Manualshelf

Users Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S4112F-ON/S4112T-ON
1481148214831484148514861487148814891490
Usage
Information
Use this command in the CONTROL-PLANE mode to apply a control-plane ACL. Control-plane ACLs are
only applied on the ingress traffic. By default, the control-plane ACL is applied to the front-panel ports as
well as the management port.The no version of this command deletes the IPv4 ACL configuration.
Example
OS10(conf-if-eth1/1/8)# ip access-group testgroup in
Example
(Control-plane
ACL)
OS10# configure terminal
OS10(config)# control-plane
OS10(config-control-plane)# ip access-group aaa-cp-acl in
Supported
Releases
10.2.0E or later; 10.4.1 or later (control-plane ACL)
ip access-list
Creates an IP access list to filter based on an IP address.
Syntax
ip access-list access-list-name
Parameters access-list-name Enter the name of an IPv4 access list. A maximum of 140 characters.
Default Not configured
Command Mode CONFIGURATION
Usage
Information
None
Example
OS10(config)# ip access-list acl1
Supported
Releases
10.2.0E or later
ip as-path access-list
Create an AS-path ACL filter for BGP routes using a regular expression. The AS values should be configured only in the plain
format (regular expressions) and not in the dotted format. This works similar to the AS values received in the BGP update
messages.
Syntax
ip as-path access-list name {deny | permit} regexp-string
Parameters
name Enter an access list name.
deny | permit Reject or accept a matching route.
regexp-string Enter a regular expression string to match an AS-path route attribute.
Defaults Not configured
Command Mode CONFIGURATION
Usage
Information
You can specify an access-list filter on inbound and outbound BGP routes. The ACL filter consists of
regular expressions. If a regular expression matches an AS path attribute in a BGP route, the route is
rejected or accepted. The AS path does not contain the local AS number. The no version of this
command removes a single access list entry if you specify deny and a regexp. Otherwise, the entire
access list is removed.
The following table provides a list of characters that you can use in the regular expression string and
indicates whether the character is supported or not:
Table 115. Special characters supported in regular expression
Character Supported/Not supported
Question mark (?) Not supported
1484 Access Control Lists