acl-ip-show

Use this command to display information about ACLs configured on the switch.

Syntax   acl-ip-show

name name-string

Name of the ACL.

id

The ID assigned to the ACL.

action permit|deny

The permission of the ACL to be either permit or deny.

proto tcp|udp|icmp|igmp|ip|icmpv6

The protocol assigned to the ACL.

src-ip ip-address

The ACL source IP address.

src-ip-mask netmask

The source IP mask of the ACL.

src-port src-port-number

The source port number.

dst-ip ip-address

The ACL destination IP address.

dst-ip-mask netmask

The destination IP mask of the ACL.

dst-port dst-port-number

The destination port number

vnet vnet-name

The vNET name.

bd bridge-domain name

The bridge domain name assigned to the ACL.

vlan vlan-id

The VLAN (0-4095) to apply the ACL.

scope local|fabric

The scope of the ACL.

port port-number

If the scope is local, specifies the switch port of the ACL.

Defaults   None

Access   CLI

History   

Version 1.2

Command introduced.

Version 2.3.0

Added the parameters to modify the ACL.

Version 2.4

The option igmp added to the parameter, protocol.

Version 2.4.1

The parameter vnet added.


Usage   Displays the list of IP ACLS in the configuration. .

Informational Note:  The source or destination IP address/mask of 0.0.0.0/255.255.255.255 means any address.
The source or destination IP address/mask of 208.74.182.229/0.0.0.0 is the same as “host 208.74.182.229”.


Examples  Use this command to display information about IP ACLs:

CLI (network-admin@switch) > acl-ip-show deny-external layout vertical 

name:               deny-external

id:                 b000022:20 

action:             deny 

proto:              tcp

src-ip:             209.225.113.24/28

src-port:           0 

dst-ip:             ::/0

dst-port:           0 

vlan:               0 

scope:              fabric 

port:               0

north
    keyboard_arrow_up
    keyboard_arrow_down
    description
    print
    feedback
    support
    business
    rss_feed
    south