Gigabit Ethernet Switch Management Guide
A
CCESS
 C
ONTROL
 L
IST
 C
OMMANDS
4-117
•To remove a rule, use the no permit or no deny command followed 
by the exact text of a previously configured rule.
• An ACL can contain up to 32 rules.
Example 
Related Commands
permit, deny 3-117
ip access-group (3-127)
show ip access-list (3-121)
permit, deny (Standard ACL) 
This command adds a rule to a Standard IP ACL. The rule sets a filter 
condition for packets emanating from the specified source. Use the no 
form to remove a rule.
Syntax
[no] {permit | deny} {any | source bitmask | host source}
• any – Any source IP address.
• source – Source IP address.
• bitmask – Decimal number representing the address bits to match.
• host – Keyword followed by a specific IP address.
Default Setting
None
Command Mode
Standard ACL
Command Usage
• New rules are appended to the end of the list.
• Address bitmasks are similar to a subnet mask, containing four integers 
from 0 to 255, each separated by a period. The binary mask uses 1 bits 
Console(config)#access-list ip standard david
Console(config-std-acl)#










