acl-ip-show
Use this command to display information about ACLs configured on the switch.
Syntax acl-ip-show
|
name name-string |
Name of the ACL. |
|
id |
The ID assigned to the ACL. |
|
action permit|deny |
The permission of the ACL to be either permit or deny. |
|
proto tcp|udp|icmp|igmp|ip|icmpv6 |
The protocol assigned to the ACL. |
|
src-ip ip-address |
The ACL source IP address. |
|
src-ip-mask netmask |
The source IP mask of the ACL. |
|
src-port src-port-number |
The source port number. |
|
dst-ip ip-address |
The ACL destination IP address. |
|
dst-ip-mask netmask |
The destination IP mask of the ACL. |
|
dst-port dst-port-number |
The destination port number |
|
vnet vnet-name |
The vNET name. |
|
bd bridge-domain name |
The bridge domain name assigned to the ACL. |
|
vlan vlan-id |
The VLAN (0-4095) to apply the ACL. |
|
scope local|fabric |
The scope of the ACL. |
|
port port-number |
If the scope is local, specifies the switch port of the ACL. |
Defaults None
Access CLI
History
|
Version 1.2 |
Command introduced. |
|
Version 2.3.0 |
Added the parameters to modify the ACL. |
|
Version 2.4 |
The option igmp added to the parameter, protocol. |
|
Version 2.4.1 |
The parameter vnet added. |
Usage Displays the list of IP ACLS in the configuration. .
Informational Note: The source or destination IP address/mask of 0.0.0.0/255.255.255.255 means any address.
The source or destination IP address/mask of 208.74.182.229/0.0.0.0 is the same as “host 208.74.182.229”.
Examples Use this command to display information about IP ACLs:
CLI (network-admin@switch) > acl-ip-show deny-external layout vertical
name: deny-external
id: b000022:20
action: deny
proto: tcp
src-ip: 209.225.113.24/28
src-port: 0
dst-ip: ::/0
dst-port: 0
vlan: 0
scope: fabric
port: 0