Jump to content

Linksys SPS224G4

SSTS
 Share

Recommended Posts

SSTS

SSTS

Posted
Posted

Кто из местной публики работал с Linksys SPS224G4? непонятно как работает ACL

делаю так:

ip access-list test

deny icmp any any

exit

 

потом:

interface ethernet e1

service-acl input test

exit

 

и после этого на порту е1 блочится не только icmp но и ВСЕ остальное.

 

P.S. Доку, которая идет со свичем на CD, курил.

 

SSTS

SSTS

Posted
  • Author
Posted

Спасибо.

Заработало в таком виде:

 

ip access-list test

deny icmp any any

permit any any any

exit

 

 

возник еще вопрос, как в ACL удалить правило

пример

 

ip access-list test

deny icmp any any

permit any any any

deny udp any any

exit

 

надо убрать deny udp any any

 

 

 

 

 

SSTS

SSTS

Posted
  • Author
Posted (edited)

Вот все что есть в CLI

TESTSPS224(config)# ip access-list test

TESTSPS224(config-ip-al)#

deny A deny-ip condition blocks traffic if the conditions

define in the deny statement are matched.

 

deny-icmp Specify deny-Icmp to block L4 Icmp traffic if the

conditions defined in the deny statement are matched.

 

deny-igmp Specify deny-Igmp to block L4 Igmp traffic if the

conditions defined in the deny statement are matched.

 

deny-tcp Specify deny-TCP to block L4 TCP traffic if the

conditions defined in the deny statement are matched.

 

deny-udp Specify deny-TCP to block L4 TCP traffic if the

conditions defined in the deny statement are matched.

 

do execute an EXEC-level command

 

end Exit from configure mode

 

exit Exit from current context

 

help Description of the interactive help system

 

permit A permit condition forward traffic if the conditions

define in the deny statement are matched.

 

permit-icmp Specify permit-Icmp to forward L4 Icmp traffic if the

conditions defined in the deny statement are matched.

 

permit-igmp Specify permit-Igmp to forward L4 Igmp traffic if the

conditions defined in the deny statement are matched.

 

permit-tcp Specify permit-TCP to forward L4 TCP traffic if the

conditions defined in the deny statement are matched.

 

permit-udp Specify permit-UDP to forward L4 UDP traffic if the

conditions defined in the deny statement are matched.

TESTSPS224(config-ip-al)#

 

смущает то что нет "no"

Edited by SSTS

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...
На сайте используются файлы cookie и сервисы аналитики для корректной работы форума и улучшения качества обслуживания. Продолжая использовать сайт, вы соглашаетесь с использованием файлов cookie и с Политикой конфиденциальности.