User Manual
SWR2311P(config)#access-list 1 deny any 192.168.1.0 0.0.0.255 host 172.16.1.1
Delete IPv4 access list #1.
SWR2311P(config)#no access-list 1
9.1.2 Add comment to IPv4 access list
[Syntax]
access-list ipv4-acl-id description line
no access-list ipv4-acl-id description
[Parameter]
ipv4-acl-id : <1-2000>
ID of IPv4 access list to which a comment will be added
line : Comment to add. Up to 32 ASCII characters can be specified
[Initial value]
none
[Input mode]
global configuration mode
[Description]
Adds a comment (remark) to the already-generated IPv4 access list.
If this command is executed with the "no" syntax, the comment is deleted from the IPv4 access list.
[Note]
You can use this command to add a comment even after the access list has been applied to LAN/SFP port and logical interface.
(The last-written comment overwrites the previous one.)
[Example]
Create access list #1 that denies communication from source segment 192.168.1.0/24 to destination 172.16.1.1, and add the
comment "Test."
SWR2311P(config)#access-list 1 deny any 192.168.1.0 0.0.0.255 host 172.16.1.1
SWR2311P(config)#access-list 1 description Test
9.1.3 Apply IPv4 access list
[Syntax]
access-group ipv4-acl-id direction
no access-group ipv4-acl-id direction
[Parameter]
ipv4-acl-id : <1-2000>
ID of IPv4 access list to apply
direction : Specifies the direction of applicable frames
Setting value Description
in Apply to received frames
out Apply to transmitted frames
[Initial value]
none
[Input mode]
interface mode
[Description]
Applies an IPv4 access list to both LAN/SFP port and logical interface.
Command Reference | Traffic control | 237