EOS – ACL’s

14th January 2016 by Martin Flammia

Filed under Extreme Networks EOS

Last modified 14th January 2016

ACL’s can be written as standard and extended, with standard only the source IP address can be used. For an extended ACL, the protocol, source IP address, destination IP address, and in the case of the TCP or UDP protocols, matching source and destination ports are configurable.

There are two ways to identify the new ACL: access‐list number or name. Standard ACL numbers can range from 1 to 99. Extended ACL numbers can range from 100 to 199. Names can be up to 64 characters in length.

Below is a an example that uses extended ACL, inclusive of remarks and logging. Logging can be log or log-verbose. Example below is for S/K

In order to make amendments you need to view the access-list so that you can get the line number of the entry you are interested in:

Output shown below:

Example for C Series. The ACLs are written and applied in a different why. You also can’t use names, remarks, logging, port ranges or apply an ACL out, there for would need to apply what you would normally set to out on the uplink port.

 

Leave a Comment