T2700G-28TQ
JetStream 28-Port Gigabit Stackable L2+ Managed Switch CLI Guide
208
destination-ip
—— The destination IP address contained in the rule.
destination-ip-mask
—— The destination IP address mask. It is required if you
typed the destination IP address.
time-segment
—— The time-range for the rule to take effect. By default, it is not
limited.
Command Mode
Global Configuration Mode
Example
Create a Standard-IP ACL whose ID is 1200, and add Rule 10 for it. In the rule,
the source IP address is 192.168.0.100, the source IP address mask is
255.255.255.0, the time-range for the rule to take effect is tSeg1, and the
packets match this rule will be forwarded by the switch:
T2700G-28TQ(config)#access-list create
1200
T2700G-28TQ(config)#access-list standard
1200
rule
10 permit
sip
192.168.0.100
smask
255.255.255.0
tseg
tSeg1
access-list extended
Description
The
access-list extended
command is used to add Extended-IP ACL rule. To
delete the corresponding rule, please use
no access-list extended
command.
Syntax
access-list extended
acl-id
rule
rule-id
{deny
|
permit} [
sip
source-ip
smask
source-ip-mask
] [
dip
destination-ip
dmask
destination-ip-mask
] [
tseg
time-segment
] [
dscp
dscp
] [
s-port
s-port
] [
d-port
d-port
] [
tcpflag
tcpflag
]
[
protocol
protocol
] [
tos
tos
] [
pre
pre
]
no access-list extended
acl-id
rule
rule-id
Parameter
acl-id
——The desired Extended-IP ACL for configuration.
rule-id
—— The rule ID.
deny —— The operation to discard packets.
permit ——The operation to forward packets. It is the default value.
source-ip
—— The source IP address contained in the rule.