access-list

Syntax

Standard IP access list:

access-list accessListName { permit | deny }
{ srcIP srcWildIp | [ host ] srcIPHost | any } [ log ]

no access-list accessListName [ { permit | deny }
{ srcIP srcWildIp | [ host ] srcIPHost | any } [ log ] ]

Extended IP access list:

access-list accessListName { permit | deny } ip { srcIP srcWildIp |
host srcIPHost | any } { dstIP dstWildIp | host dstIPHost | any } [ log ]

no access-list accessListName [ { permit | deny } ip { srcIP srcWildIp |
host srcIPHost | any } { dstIP dstWildIp | host dstIPHost | any } [ log ] ]

Release Information

Command introduced before JunosE Release 7.1.0.

Description

Defines a standard or extended IP access list. The extended access list enables you to specify a destination address or host, precedence, and type of service. This command imposes an implicit last rule of “deny ip any any” to deny all routes that do not match previous rules in the access list. The no version removes the IP access list, the specified entry in an access list, or the log for a specified entry.

Options

Mode

Global Configuration

Related Documentation