+ Post New Thread
Results 1 to 6 of 6
Wired Networks Thread, Cisco IOS ACL - port range? in Technical; Is it possible to set up an ACL on a cisco switch which covers a range of ports (eg. 30015-30215)? ...
  1. #1

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    18,130
    Thank Post
    522
    Thanked 2,540 Times in 1,975 Posts
    Blog Entries
    24
    Rep Power
    875

    Cisco IOS ACL - port range?

    Is it possible to set up an ACL on a cisco switch which covers a range of ports (eg. 30015-30215)?

    I can do individual ports easily enough, but I don't want to have to do 200 ports...

  2. #2

    Join Date
    Jan 2012
    Posts
    170
    Thank Post
    8
    Thanked 16 Times in 15 Posts
    Rep Power
    37
    Quote Originally Posted by localzuk View Post
    Is it possible to set up an ACL on a cisco switch which covers a range of ports (eg. 30015-30215)?

    I can do individual ports easily enough, but I don't want to have to do 200 ports...
    have a look at the int range command. should put a range of interfaces (either vlan, gigE, FE) from within config mode. if you have a range of none contiguous ports you may be able to use a comma to specify all the different ports you want to apply acl to in one command (although have not had a reason to use that before so don't know how well the latter works)

  3. #3

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    18,130
    Thank Post
    522
    Thanked 2,540 Times in 1,975 Posts
    Blog Entries
    24
    Rep Power
    875
    Quote Originally Posted by alttab View Post
    have a look at the int range command. should put a range of interfaces (either vlan, gigE, FE) from within config mode. if you have a range of none contiguous ports you may be able to use a comma to specify all the different ports you want to apply acl to in one command (although have not had a reason to use that before so don't know how well the latter works)
    I'm referring to TCP/UDP ports, rather than physical ports. The int range command refers to physical ports.

  4. #4

    Join Date
    Jan 2012
    Posts
    170
    Thank Post
    8
    Thanked 16 Times in 15 Posts
    Rep Power
    37
    Quote Originally Posted by localzuk View Post
    I'm referring to TCP/UDP ports, rather than physical ports. The int range command refers to physical ports.
    sorry, i read it as you wanting to apply an acl(s) to a range of interfaces. thought it sounded a bit strange needing to apply ip acl's to 200 switch ports. should have read your first post properly.

  5. #5
    cpjitservices's Avatar
    Join Date
    Jul 2010
    Location
    Hessle
    Posts
    2,525
    Thank Post
    522
    Thanked 293 Times in 269 Posts
    Rep Power
    83
    This page may help you.

    Configuring Commonly Used IP ACLs - Cisco Systems

    I love ACL's

  6. #6
    nicholab's Avatar
    Join Date
    Nov 2006
    Location
    Birmingham
    Posts
    1,523
    Thank Post
    4
    Thanked 99 Times in 95 Posts
    Blog Entries
    1
    Rep Power
    53
    Just stick "range 30015-30215" instead of "eq 30015"

SHARE:
+ Post New Thread

Similar Threads

  1. CISCO ASA5505 Firewall (port forwarding)
    By phughes in forum Internet Related/Filtering/Firewall
    Replies: 6
    Last Post: 2nd November 2010, 11:16 AM
  2. Replies: 0
    Last Post: 27th May 2010, 11:41 AM
  3. [Wanted] Cisco 2950 24 port switches
    By Sunderwood in forum Classified Adverts
    Replies: 16
    Last Post: 31st March 2010, 11:00 PM
  4. CISCO 2600 IOS
    By Joedetic in forum Hardware
    Replies: 4
    Last Post: 28th February 2007, 10:39 AM
  5. Cisco IOS
    By Ric_ in forum Hardware
    Replies: 10
    Last Post: 2nd October 2005, 11:24 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •