ip access-group
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m
switch# config terminal
Enter configuration commands, one per line.
switch(config)# ip access-list aclDenyTcp deny tcp any any
switch(config)# interface gigabitethernet 3/1
switch(config-if)# ip access-group aclDenyTcp in
The following example deletes the access group called aclDenyTcp for ingress traffic:
switch(config-if)# no ip access-group aclDenyTcp in
The following example creates an access list called aclPermitUdp (if it does not already exist) for local
egress traffic:
switch# config terminal
Enter configuration commands, one per line.
switch(config)# ip access-list aclPermitUdp permit udp 192.168.32.0 0.0.7.255 any
switch(config)# interface gigabitethernet 3/1
switch(config-if)# ip access-group aclPermitUdp out
The following example removes the access list called aclPermitUdp for local egress traffic:
switch(config-if)# no ip access-group aclPermitUdp out
Related Commands
Command
ip access-list
show ip access-list
Cisco MDS 9000 Family Command Reference
11-42
Description
Configures IP access control lists.
Displays the IP-ACL configuration information.
End with CNTL/Z.
End with CNTL/Z.
OL-18089-01, Cisco MDS NX-OS Release 4.x
Chapter 11
I Commands