Applying an ACL to an Individual Subscriber
To apply the ACL to an individual subscriber, use the following configuration:
configure
context acl_ctxt_name [ -noconfirm ]
subscriber name subs_name
{ ip | ipv6 } access-group acl_list_name [ in | out ]
end
Notes:
•
The context name is the name of the ACL context containing the interface to which the ACL is to be
applied.
•
If neither the in nor the out keyword is specified, the ACL will be applied to all inbound and outbound
packets.
•
The ACL to be applied must be configured in the context specified by this command.
•
Up to eight ACLs can be applied to a group provided that the number of rules configured within the
ACL(s) does not exceed the 128-rule limit for the interface.
Verifying the ACL Configuration to an Individual Subscriber
These instructions are used to verify the ACL configuration.
Verify that your ACL lists were applied properly by entering the following command in Exec Mode:
[local]host_name# show configuration context context_name
context_name is the name of the context containing the subscriber subs1 to which the ACL(s) was/were applied.
The output of this command displays the configuration of the entire context. Examine the output for the commands
pertaining to interface configuration. The commands display the ACL(s) applied using this procedure.
configure
context context_name
ip access-list acl_name
deny host ip_address
deny ip any host ip_address
exit
ip access-group access_group_name
service-redundancy-protocol
exit
interface interface
ip address ip_address/mask
exit
subscriber default
exit
subscriber name subscriber_name
ASR 5500 System Administration Guide, StarOS Release 21.4
258
Access Control Lists
Applying an ACL to an Individual Subscriber
To Next Page
Loading...
Need help?
General
