UMN:CLI
User Manual
V8102
240
Add entries to the list by repeating the command for different IP addresses.
To delete an existing extended IP address-based access list entry, use the following
command.
Command
Mode
Description
no access-list
{<100-199> | <2000-2699>} {
deny
|
permit
}
ip
A.B.C.D
WILDCARD-BITS
A.B.C.D
WILDCARD-BITS
Global
Deletes an entry of the extended ACL.
no access-list
{<100-199> | <2000-2699>} {
deny
|
permit
}
ip host
A.B.C.D A.B.C.D WILDCARD-
BITS
no access-list
{<100-199> | <2000-2699>} {
deny
|
permit
}
ip host A.B.C.D any
no access-list
{<100-199> | <2000-2699>} {
deny
|
permit
}
ip host
A.B.C.D host A.B.C.D
no access-list
{<100-199> | <2000-2699>} {
deny
|
permit
}
ip any
A.B.C.D A.B.C.D WILDCARD-BITS
no access-list
{<100-199> | <2000-2699>} {
deny
|
permit
}
ip any any
no access-list
{<100-199> | <2000-2699>} {
deny
|
permit
}
ip any host A.B.C.D
no access-list
{<100-199> | <2000-2699>}
re-
mark LINE
Sample Configuration
This is an example of creating the extended ACL entries.
SWITCH(config)#
access-list
100
permit ip
10.55.10.2 0.0.0.255 10.55.193.5
0.0.0.255
SWITCH(config)#
access-list
100
deny ip
10.12.154.1 0.0.0.255 10.12.202.1
0.0.0.255
SWITCH(config)#
i