Viewing ACL information
You must be in the manager (#) command context:
switch#
show access-list [interface
<ID>] [{in|out}] [{ip|ipv6|mac}] [<ACL-NAME>] [commands] [configuration]
Use the
[interface
<ID>] parameters to show ACL information for a specific interface.
Use the[{in|out}] parameters to limit display of ACL information to inbound (ingress) ACLs or outbound (egress) ACLs.
Use the
[{ip|ipv6|mac}] parameters to limit display of ACL information to either IPv4, IPv6 or MAC ACLs.
Use the [<ACL-NAME>] parameter to limit display of information to a specific named ACL.
Use the
[commands] parameter to display output as CLI commands.
Use the
[configuration] parameter to display user-specified ACL configuration instead of active programmed configuration.
Viewing IPv4 ACL information:
switch# show access-list ip
Type Name
Sequence Comment
Action L3 Protocol
Source IP Address Source L4 Port(s)
Destination IP Address Destination L4 Port(s)
Additional Parameters
------------------------------------------------------------------------------
IPv4 MY_ACL
10 permit udp
any
172.16.1.0/24
20 Permit all TCP ephemeral ports
permit tcp
172.16.2.0/16 < 1023
any
30 permit tcp
172.26.1.0/24
any
syn
ack
dscp 10
40 deny any
any
any
Hit-counts: enabled
------------------------------------------------------------------------------
switch# show access-list ipv6 commands
10 permit udp any 2001::1/64
20 permit tcp 2001:2001::2:1/128 gt 1023 any
30 permit tcp 2001:2011:::1/64 any tos 4
40 deny any any any count