This appendix summarizes the command syntax and number ranges or symbolic names used for the access lists supported by the Cisco software. The summaries are listed by protocol, in alphabetical order. The command to create the access list is given first, followed by the command you use to assign the access list number to an interface.
Access list ranges are included in the summary descriptions; however, in actual use, only one number is selected from the given range.
Table B-1 lists the access list number ranges in numerical order.
Apollo Domain Access List
apollo access-list name permit|deny [firstnet-]lastnet.host [wildcard-mask]
apollo access-group name
AppleTalk Access List
access-list 600-699 permit|deny network
appletalk access-group 600-699
DECnet Access List
One of:
access-list 300-399 permit|deny address mask
access-list 300-399 permit|deny source source-mask dest dest-mask
and then:
decnet access-group 300-399
Ethernet Address Access List
access-list 700-799 permit|deny address mask
bridge-group 1-9 input-address-list|output-address-list 700-799
Ethernet Protocol Access List
access-list 200-299 permit|deny 0xtype-code 0xmask
bridge-group 1-9 input-type-list|output-type-list 200-299
IP Access List
access-list 1-99 permit|deny address mask
ip access-group 1-99
access-class 1-99 out|in (for terminal line assignment)
Extended IP Access List
access-list 100-199 permit|deny ip|tcp|udp|icmp source source-mask dest dest-mask [lt|gt|eq|neq dest-port]
ip access-group 100-199
Novell Access Lists
access-list 800-899 permit|deny net[.source-address ][source-mask ]net[.dest-address ][dest-mask]
novell access-group 800-899
Extended Novell Access Lists
access-list 900-999 permit|deny xns-protocol net[.source-address ][source-mask ]source-socket net[.dest-address ][dest-mask ]dest-socket
novell access-group 900-999
Novell SAP Access List Filter
access-list 1000-1099 permit|deny network.[address ][service-type]
Source-Route Bridge Protocol Type Access List
access-list 200-299 {permit | deny} type-code wild-mask
Transparent Bridge Access List
access-list list {permit|deny} type-code wild-mask
VINES Access List
One of:
vines access-list 1-100 {permit|deny} IP source-address source-mask dest-address dest-mask
vines access-list 1-100 permit|deny protocol source-address source-mask source-port dest-address dest-mask dest-port
and then:
vines access-group list
XNS Access Lists
access-list 400-499 permit|deny net[.source-address ][source-mask ]net[.dest-address ][dest-mask]
xns access-group 400-499
Extended XNS Access Lists
access-list 500-599 permit|deny xns-protocol net[.source-address] [source-mask ]source-socket net[.dest-address ][dest-mask ]dest-socket
xns access-group 500-599
Summary of Numerical Ranges
Protocol Range
IP 1--99
Extended IP 100--199
Ethernetl type code 200--299
DECnet 300--399
XNS 400--499
Extended XNS 500--599
AppleTalk 600--699
Ethernet address 700--799
Novell 800--899
Extended Novell 900--999
Novell SAP 1000--1099
