show access-lists

This command displays IP ACLs, IPv6 ACL (Access Control List)s, and MAC access control lists information for a designated interface and direction. Instead of unit/slot/port, lag lag-intf-num can be used as an alternate way to specify the LAG (Link Aggregation Group) interface. lag lag-intf-num can also be used to specify the LAG interface where lag-intf-num is the LAG port number. Use the control-plane keyword to display the ACLs applied on the CPU port.

Format	show access-lists interface {unit/slot/port in \| out \| control-plane}
Mode	Privileged EXEC

Column

Meaning

ACL Type	Type of access list (IP, IPv6, or MAC).
ACL ID	Access List name for a MAC or IPv6 access list or the numeric identifier for an IP access list.
Sequence Number	An optional sequence number may be specified to indicate the order of this access list relative to other access lists already assigned to this interface and direction. A lower number indicates higher precedence order. If a sequence number is already in use for this interface and direction, the specified access list replaces the currently attached access list using that sequence number. If the sequence number is not specified by the user, a sequence number that is one greater than the highest sequence number currently in use for this interface and direction is used. Valid range is (1 to 4294967295).
in\|out	in – Display Access List information for a particular interface and the in direction. out – Display Access List information for a particular interface and the out direction.

The following shows an example of the command.

(Extreme 220) (Routing) #show access-lists interface control-plane
ACL Type             ACL ID                    Sequence Number
--------         -------------------------------  ---------------
IPv6            ip61                                    1

Published February 2019prev | next

Email this topic

Print this page Print this page

Leave feedback Feedback