?– Named ACLs allow you to delete individual statements from an ACL.
Troubleshooting ACLs
When you ?¬?nish the ACL con?¬?guration, use the show commands to verify the con?¬?guration. Use
the show access-lists command to display the contents of all ACLs, as demonstrated in Example
6-13. By entering the ACL name or number as an option for this command, you can display a
speci?¬?c ACL. To display only the contents of all IP ACLs, use the show ip access-list command.
Example 6-13 Verifying Access List Con?¬?guration
RouterX# sshhooww aacccceessss--lliissttss
Standard IP access list SALES
10 deny 10.1.1.0, wildcard bits 0.0.0.255
20 permit 10.3.3.1
30 permit 10.4.4.1
40 permit 10.5.5.1
Extended IP access list ENG
continues
240 Chapter 6: Managing Traffic with Access Control Lists
The show ip interface command displays IP interface information and indicates whether any IP
ACLs are set on the interface. In the show ip interface e0 command output shown in Example 6-
14, IP ACL 1 has been con?¬?gured on the E0 interface as an inbound ACL. No outbound IP ACL
has been con?¬?gured on the E0 interface.
Take a look at some examples of access list problems.
Pages:
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365