Viewing ACL information
You must be in the manager (#) command context:
switch#
show access-list [interface
<ID>] [{in|out}] [{ip|ipv6|mac}] [<ACL-NAME>] [commands] [configuration]
Use the
[interface
<ID>]
parameters to show ACL information for a specific interface.
Use the[{in|out}]
parameters to limit display of ACL information to inbound (ingress) ACLs or outbound (egress) ACLs.
Use the
[{ip|ipv6|mac}]
parameters to limit display of ACL information to either IPv4, IPv6 or MAC ACLs.
Use the [<ACL-NAME>]
parameter to limit display of information to a specific named ACL.
Use the
[commands]
parameter to display output as CLI commands.
Use the
[configuration]
parameter to display user-specified ACL configuration instead of active programmed configuration.
Viewing IPv4 ACL information:
switch# show access-list ip Type Name Sequence Comment Action L3 Protocol Source IP Address Source L4 Port(s) Destination IP Address Destination L4 Port(s) Additional Parameters ------------------------------------------------------------------------------ IPv4 MY_ACL 10 permit udp any 172.16.1.0/24 20 Permit all TCP ephemeral ports permit tcp 172.16.2.0/16 < 1023 any 30 permit tcp 172.26.1.0/24 any syn ack dscp 10 40 deny any any any Hit-counts: enabled ------------------------------------------------------------------------------
switch# show access-list ipv6 commands 10 permit udp any 2001::1/64 20 permit tcp 2001:2001::2:1/128 gt 1023 any 30 permit tcp 2001:2011:::1/64 any tos 4 40 deny any any any count