ACL插入：

---

Gateway(config)#ip access-list extended 100

Gateway(config-ext-nacl)#?

Ext Access List configuration commands:

  <1-2147483647>  Sequence Number

  default        Set a command to its defaults

  deny            Specify packets to reject

  dynamic        Specify a DYNAMIC list of PERMITs or DENYs

  evaluate        Evaluate an access list

  exit            Exit from access-list configuration mode

  no              Negate a command or set its defaults

  permit          Specify packets to forward

  remark          Access list entry comment

--------------------------------------------------------------------------

实例：

Gateway(config-ext-nacl)#21 permit tcp host 10.1.1.2 host 10.1.1.1 eq 80

ACL重新排序：

实例：

Gateway(config)#ip access-list resequence 100(名字) 10(开始) 10(递增)