A
CCESS
C
ONTROL
L
ISTS
3-77
CLI – This example allows SNMP access for a specific client.
Access Control Lists
Access Control Lists (ACL) provide packet filtering for IP frames (based
on address, protocol, Layer 4 protocol port number or TCP control code)
or any frames (based on MAC address or Ethernet type). To filter
incoming packets, first create an access list, add the required rules and then
bind the list to a specific port.
Configuring Access Control Lists
An ACL is a sequential list of permit or deny conditions that apply to IP
addresses, MAC addresses, or other more specific criteria. This switch tests
ingress or egress packets against the conditions in an ACL one by one. A
packet will be accepted as soon as it matches a permit rule, or dropped as
soon as it matches a deny rule. If no rules match for a list of all permit
rules, the packet is dropped; and if no rules match for a list of all deny
rules, the packet is accepted.
Console(config)#management snmp-client 10.1.2.3 4-38
Console(config)#end
Console#show management all-client
Management IP Filter
HTTP-Client:
Start IP address End IP address
-----------------------------------------------
1. 10.1.2.1 10.1.2.254
SNMP-Client:
Start IP address End IP address
-----------------------------------------------
1. 10.1.2.3 10.1.2.3
TELNET-Client:
Start IP address End IP address
-----------------------------------------------
Console#