Header Only - DO NOT REMOVE - Extreme Networks

Configure a simple ACL-LIST


Userlevel 1
I need configure an ACL-LIST in a sw BD-8810 to permit only some IP address from different VLANs could be connect to a server. i read the EXOS_User_Guide_16_1 but i confuse.
can you help me?

regards

2 replies

Userlevel 7
Hi, did you read this document?
http://extrcdn.extremenetworks.com/wp-content/uploads/2015/07/ACL_Solutions_Guide.pdf
Userlevel 2
Hi Daniel,
Below is a quick example for your requirement.
Source address here is the IP address you wish to allow.
You can define destination-address as well if you want to specify as per your requirement.

entry one_allow{
if match any{
source-address 192.168.1.10/32;
source-address 10.10.10.10/32;
}
then {
permit;
}
}
entry two_deny {
if match any {
}
then {
deny;
}
}

Note:
EXOS implicitly allows the traffic, hence the second entry has been written to deny here.
Please make a note all other traffic will be denied with above ACL.
To make sure all other traffic work, please allow the subnet and define entries as required.

Below link is handy for starters in ACL:

https://gtacknowledge.extremenetworks.com/articles/How_To/How-to-create-and-apply-an-ACL-in-EXOS

Thanks & Regards,
Syed Nishath

Reply