show access-list configuration

show access-list configuration

Description

Displays the ACL (Access Control List) configuration.

Syntax Description

There are no arguments or variables for this command.

Default

N/A.

Usage Guidelines

This command displays the state of the ACL configuration, set by the following commands:

        enable access-list refresh blackhole
        enable access-list permit to-cpu
        configure access-list rule-compression port-counters
        configure access-list vlan-acl-precedence
            

Example

The following command displays the state of the ACL configuration:

show access-list configuration

On Summit series switches, the output from this command is similar to the following:

Access-list Refresh Blackhole: Enabled
Access-list Permit To-CPU: Enabled
Access-list configured vlan-acl precedence mode: Dedicated or Shared
Access-list operational vlan-acl-precedence mode: Dedicated or Shared
Access-list Rule-compression Port-counters: Dedicated or Shared

The following displays how the output looks when "multiple matches" action resolution mode is chosen:

Access-list Refresh Blackhole: Enabled       
Access-list configured vlan-acl-precedence mode: Dedicated       
Access-list operational vlan-acl-precedence mode: Dedicated       
Access-list Rule-compression Port-counters: Dedicated       
Access-list Action Resolution: Multiple

The following displays how the output looks when "highest priority only" action resolution mode is chosen:

Access-list Refresh Blackhole: Enabled       
Access-list configured vlan-acl-precedence mode: Dedicated       
Access-list operational vlan-acl-precedence mode: Dedicated       
Access-list Rule-compression Port-counters: Dedicated   
Access-list Action Resolution: Highest Priority Only  
The command show configuration acl also shows the configure access-list action-resolution highest-priority command if "highest priority only" action resolution mode is chosen:
show config acl
#
# Module acl configuration.
#
configure access-list action-resolution highest-priority

History

This command was first available in ExtremeXOS 11.0.

The Access-list Permit to CPU configuration was added in ExtremeXOS 11.3.2.

The Access-list Rule-compression Port Counters configuration was added in ExtremeXOS 12.3.

The Access-list Configured VLAN (Virtual LAN)-ACL Precedence Mode configuration was added in ExtremeXOS 12.3.

Platform Availability

This command is available on the Summit X450-G2, X460-G2, X670-G2, X770, and ExtremeSwitching X440-G2, X590, X620, X690, X870 series switches.