Here are the step by step configuration of implementing Access-Lists or ACL on Huawei routers such as NetEngine Series Routers utilizing the ip-pool and source-pool for simplicity and convenience. 1.Create ip-pool and source-pool acl ip-pool allowed_ip ip address 192.168.0.0 0.0.0.255 acl port-pool allowed_port eq 22 2. Create ACL acl number 88 description ACL88 rule 10 permit tcp source-pool allowed_ip destination-port-pool allowed_port rule 20 deny tcp destination-port-pool allowed_port rule 30 permit ip 3. Create traffic policy and apply ACL traffic classifier…
Tag: <span>access-list</span>
Here are sample configuration on resequencing access lists in Cisco Routers for IOS, IOS-XE, IOS-XR and Nexus OS Cisco IOS/IOS-XE a. Show the existing access-list IOS#show access-lists acl_123 Extended IP access list acl_123 10 permit tcp 192.168.10.8 255.255.255.255 192.168.20.5 255.255.255.255 eq 22 20 permit tcp 172.16.0.10.8 255.255.255.255 192.168.20.5 255.255.255.255 eq 22 30 deny ip any any b. Add the new access list before the last deny rule IOS(config)#ip access-list extended acl_123 IOS(config-ext-nacl)#21 permit tcp host 192.168.11.8 host 192.168.20.5 eq 22…
One Comment