Access Control List Configuration - Lenovo RackSwitch G8264 Command Reference Manual

Access Control List Configuration

© Copyright Lenovo 2017
These commands allow you to define filtering criteria for each Access Control List
(ACL).
Table 197.
ACL Configuration Options
Command Syntax and Usage
access­control list <1‐256> action {permit|deny|
|set­priority <0‐7>}
Configures a filter action for packets that match the ACL definitions. You can
choose to permit (pass) or deny (drop) packets or set the 802.1p priority level.
Command mode: Global configuration
access­control list <1‐256> action redirect {port <port
number>|portchannel <1‐64>}
Configures the redirection of packets that match the ACL definitions. You can
choose to redirect packets either through an ethernet port or a Link
Aggregation Group (LAG).
Command mode: Global configuration
access­control list <1‐256> egress­port port <port alias or number>
Configures the ACL to function on egress packets.
Command mode: Global configuration
no access­control list <1‐256> egress­port
Disables the ACL to function on egress packets.
Command mode: Global configuration
[no] access­control list <1‐256> log
Enables or disables logging for the Access Control List.
Note: Enabling the LOG feature neutralizes ACL deny filter actions for Telnet
and SSH traffic that is addressed to the switchʹs Layer 3 interfaces.
Command mode: Global configuration
[no] access­control list <1‐256> statistics
Enables or disables the statistics collection for the Access Control List.
Command mode: Global configuration
default access­control list <1‐256>
Resets the ACL parameters to their default values.
Command mode: Global configuration
show access­control list <1‐256>
Displays the current ACL parameters.
Command mode: All
Chapter 4: Configuration Commands
425