Concept Guide

Table Of Contents
ip access-list extended
ip access-list extended {<number>|<name>}
deny <protocol> <source> <dest>
ipv6
no ...
permit <protocol> <source> <dest>
Description
This command configures an extended access control list (ACL). To configure IPv6 specific rules, use the ipv6
keyword for each rule.
Syntax
Parameter Description Range
extended
Enter a name, or a number in the specified range. 100-199,
2000-2699
ipv6
Use the ipv6 keyword to add IPv6 specific rules.
deny
Reject the specified packets.
<protocol>
Protocol, which can be one of the following:
l Protocol number between 0-255
l any: any protocol
l icmp: Internet Control Message Protocol
l igmp: Internet Gateway Message Protocol
l tcp: Transmission Control Protocol
l udp: User Datagram Protocol
<source>
Source, which can be one of the following:
l Source address (IPv4 or IPv6) and wildcard
l any: any source
l host: specify a single host IP address
<dest>
Destination, which can be one of the following:
l Destination address (IPv4 or IPv6) and wildcard
l any: any destination
l host: specify a single host IP address
no
Negates any configured parameter.
permit
Allow the specified packets.
Dell Networking W-Series ArubaOS 6.5.x | Reference Guide ip access-list extended | 487