Reference Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S4820T

191

192

193

194

195

196

197

198

199

200

Access Control Lists (ACL) | 197

The C-Series and S-Series cannot count both packets and bytes, so when you enter

the

count byte options, only bytes are incremented.

Commands

ip access-list standard

c e s

Create a standard IP access list (IP ACL) to filter based on IP address.

Syntax

ip access-list standard access-list-name

Parameters

Defaults

All IP access lists contain an implicit “deny any,” that is, if no match occurs, the

packet is dropped.

Command Modes

CONFIGURATION

Command

History

Usage

Information

FTOS supports one ingress and one egress IP ACL per interface.

Prior to 7.8.1.0, names are up to 16 characters long.

The number of entries allowed per ACL is hardware-dependent. Refer to your line

card documentation for detailed specification on entries allowed per ACL.

Example

FTOS(conf)#ip access-list standard TestList

FTOS(config-std-nacl)#

Note: When ACL logging and byte counters are configured simultaneously, byte

counters may display an incorrect value. Configure packet counters with logging

instead.

ip access-list standard Configure a standard ACL.

permit Configure a permit filter.

access-list-name

Enter a string up to 140 characters long as the ACL name.

Version 8.3.19.0 Introduced on S4820T

Version 8.3.10.0 Introduced on S4810

Version 8.1.1.0 Introduced on E-Series ExaScale

Version 7.8.1.0 Increased name string to accept up to 140 characters. Prior to 7.8.1.0, names are

up to 16 characters long.

Version 7.6.1.0 Added support for S-Series

Version 7.5.1.0 Added support for C-Series

Version 7.4.1.0 Added support for non-contiguous mask and added the

monitor option.

Version 6.5.1.0 Expanded to include the optional QoS order priority for the ACL entry.