Reference Guide
• in — Apply the ACL to incoming trac.
• out — Apply the ACL to outgoing trac.
Default Not congured
Command Mode INTERFACE
Usage Information The no version of this command deletes an IP ACL conguration.
Example
OS10(conf-if-eth1/1/8)# ip access-group testgroup in
Supported Releases 10.2.0E or later
ip access-list
Creates an IP access list to lter based on an IP address.
Syntax
ip access-list access-list-name
Parameters access-list-name — Enter the name of an IPv4 access list. A maximum of 140 characters.
Default Not congured
Command Mode CONFIGURATION
Usage Information None
Example
OS10(config)# ip access-list acl1
Supported Releases 10.2.0E or later
ip as-path deny
Denes a BGP access list.
Syntax
ip as-path access-list name deny ASNumber
Parameters
• name — Enter the access list name, from 1 to 140.
• ASNumber — Enter the AS number.
Defaults Not congured
Command Mode CONFIGURATION
Usage Information
You can specify an access list lter on both inbound and outbound BGP routes. Each lter is an access list based
on regular expressions. If the regular expression matches the representation of the route AS path as an ASCII
string, the permit or deny condition applies. The AS path does not contain the local AS number. The no version of
this command removes a single access list entry if you specify deny and a regexp. Otherwise, the entire access
list is removed.
Example
OS10(config)# ip as-path access-list abc deny 123
Supported Release 10.3.0E or later
Access Control Lists 425