- Define
an access list to capture source from a subnet.
SEFOS# configure terminal
SEFOS(config)# ip access-list extended 200
SEFOS(config-ext-nacl)# permit ip 10.123.1.0 255.255.255.0 any
SEFOS(config-ext-nacl)# exit
SEFOS(config)# ip access-list extended 210
SEFOS(config-ext-nacl)# permit ip any any
SEFOS(config-ext-nacl)# exit
- Apply the ACL to interface 0/1.
SEFOS(config)# interface extreme-ethernet 0/1
SEFOS(config-if)# ip access-group 200 in
SEFOS(config-if)# ip access-group 210 in
SEFOS(config-if)# end
- Review the access list information
for ip 200.
SEFOS# show access-lists ip 200
Extended IP Access List 200
-----------------------------
Filter Priority : 1
Filter Protocol Type : ANY
IP address Type : IPV4
Source IP address : 10.123.1.0
Source IP address mask : 255.255.255.0
Source IP Prefix Length : 24
Destination IP address : 0.0.0.0
Destination IP address mask : 0.0.0.0
Destination IP Prefix Length : 0
Flow Identifier : 0
In Port List : Ex0/1
Out Port List : NIL
Filter TOS : NIL
Filter DSCP : NIL
Filter Action : Permit
Status : Active
- Review the access list information
for ip 210.
SEFOS# show access-lists ip 210
Extended IP Access List 210
-----------------------------
Filter Priority : 1
Filter Protocol Type : ANY
IP address Type : IPV4
Source IP address : 0.0.0.0
Source IP address mask : 0.0.0.0
Source IP Prefix Length : 0
Destination IP address : 0.0.0.0
Destination IP address mask : 0.0.0.0
Destination IP Prefix Length : 0
Flow Identifier : 0
In Port List : Ex0/1
Out Port List : NIL
Filter TOS : NIL
Filter DSCP : NIL
Filter Action : Permit
Status : Active