access-list

Answered Question
Mar 19th, 2009
User Badges:
  • Bronze, 100 points or more

Hi everybody1

My book shows :

access-list 101 remark list to allow traffic from server1

Can i use named access list as;

ip access-list standard zee remark this is good traffic.?


thanks a lot!

Correct Answer by glen.grant about 8 years 1 month ago

Really named and numbered are handled the same now in my experience. Any code after 12.2.T . For instance if you do have the following


access-list 101 permit ip 10.1.1.0 0.0.0.255 172.16.1.0 0.0.0.255


You can then modify this as a named ACL


conf t

ip access-list extended 101

(This puts you acl config mode and you can add or delete stuff as any normal acl) and add as many remarks as you want in the ACL .

permit ip 10.1.2.0 0.0.0.255 172.16.1.10 0.0.0.255

remark Internet traffic


Correct Answer by Giuseppe Larosa about 8 years 1 month ago

hello Sarah,

to be noted that multiple remarks can be inserted in the ACL statements.


I once thought this is possible only with named ACL.


Hope to help

Giuseppe


Correct Answer by bmcginn about 8 years 1 month ago

Yes you can.


As pkurdziel mentioned above..


syntax to enter the config section for the ACL is:


ip access-list {standard|extended} [name of list]

!you can now put in your remark

remark This is my Named ACL

!follow it on with the statements

permit ip any any





  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (4 ratings)
Loading.
pkurdziel Thu, 03/19/2009 - 21:01
User Badges:

This is the commented name IP ACL command syntax.


ip access-list {standard|extended} name

remark remark


This is the commented numbered IP ACL command syntax.


access-list access-list-number remark remark



sarahr202 Thu, 03/19/2009 - 22:09
User Badges:
  • Bronze, 100 points or more

Thans a lot. HOw about named access list? Can we use " remark" option with it?

thanks a lot!

Correct Answer
bmcginn Thu, 03/19/2009 - 23:15
User Badges:
  • Bronze, 100 points or more

Yes you can.


As pkurdziel mentioned above..


syntax to enter the config section for the ACL is:


ip access-list {standard|extended} [name of list]

!you can now put in your remark

remark This is my Named ACL

!follow it on with the statements

permit ip any any





Correct Answer
Giuseppe Larosa Fri, 03/20/2009 - 01:08
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,

    Founding Member

hello Sarah,

to be noted that multiple remarks can be inserted in the ACL statements.


I once thought this is possible only with named ACL.


Hope to help

Giuseppe


sarahr202 Fri, 03/20/2009 - 09:12
User Badges:
  • Bronze, 100 points or more

Thanks Giuseppe!

You lost me here. Could you please give any example?

Giuseppe Larosa Fri, 03/20/2009 - 15:00
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,

    Founding Member

Hello Sarah,

I was meaning that in different lines of an ACL more then one of them can be a remark command.


Hope to help

Giuseppe


Correct Answer
glen.grant Sat, 03/21/2009 - 05:19
User Badges:
  • Purple, 4500 points or more

Really named and numbered are handled the same now in my experience. Any code after 12.2.T . For instance if you do have the following


access-list 101 permit ip 10.1.1.0 0.0.0.255 172.16.1.0 0.0.0.255


You can then modify this as a named ACL


conf t

ip access-list extended 101

(This puts you acl config mode and you can add or delete stuff as any normal acl) and add as many remarks as you want in the ACL .

permit ip 10.1.2.0 0.0.0.255 172.16.1.10 0.0.0.255

remark Internet traffic


Actions

This Discussion