Administrator Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S3048-ON

201

202

203

204

205

206

207

208

209

210

Example

An ACL rule with a TCP port range of 4000–8000 uses eight entries in the CAM.

Rule# Data Mask From To #Covered

1 0000111110100000 1111111111100000 4000 4031 32

2 0000111111000000 1111111111000000 4032 4095 64

3 0001000000000000 1111100000000000 4096 6143 2048

4 0001100000000000 1111110000000000 6144 7167 1024

5 0001110000000000 1111111000000000 7168 7679 512

6 0001111000000000 1111111100000000 7680 7935 256

7 0001111100000000 1111111111000000 7936 7999 64

8 0001111101000000 1111111111111111 8000 8000 1

Total Ports: 4001

Example

An ACL rule with a TCP port lt 1023 uses only one entry in the CAM.

Rule# Data Mask From To #Covered

1 0000000000000000 1111110000000000 0 1023 1024

Total Ports: 1024

Related Commands

• deny — assign a lter to deny IP trac.

• deny tcp — assign a lter to deny TCP trac.

ip access-list extended

Name (or select) an extended IP access list (IP ACL) based on IP addresses or protocols.

Syntax

ip access-list extended access-list-name

To delete an access list, use the no ip access-list extended access-list-name command.

Parameters

access-list-name Enter a string up to 140 characters long as the access list name.

Defaults All access lists contain an implicit “deny any”; that is, if no match occurs, the packet is dropped.

Command Modes CONFIGURATION

Command History

This guide is platform-specic. For command information about other platforms, see the relevant Dell Networking

OS Command Line Reference Guide.

Version Description

9.8(1.0) Introduced on the Z9100–ON.

9.8(0.0P5) Introduced on the S4048-ON.

9.8(0.0P2) Introduced on the S3048-ON.

9.7(0.0) Introduced on the S6000–ON.

9.2(1.0) Introduced on the Z9500.

9.0.2.0 Introduced on the S6000.

8.3.19.0 Introduced on the S4820T.

210 Access Control Lists (ACL)