The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.
This chapter describes the system management commands that begin with I.
To create an IPv4 access control list (ACL) within a configuration session, use the ip access-list command. To remove an ACL from a configuration session, use the no form of this command.
ip access-list ACL-name
no ip access-list ACL-name
ACL-name |
Name of the IPv4 ACL. The name can be up to 64 alphanumeric characters and cannot contain a space or quotation mark. |
No IPv4 ACLs are defined by default.
Global session configuration mode
|
|
---|---|
5.2(1)N1(1) |
This command was introduced. |
This example shows how to create an IPv4 ACL for a configuration session:
switch# configure session MySession1
switch(config-s)# ip access-list myACL
switch(config-s-acl)#
To configure the source interface for the Domain Name Server (DNS) domain lookup, use the ip dns source-interface command. To revert to the default settings, use the no form of this command.
ip dns source-interface {ethernet slot/[QSFP-module/]port | loopback intf-num} [vrf {vrf-name | default | management}]
no ip dns source-interface {ethernet slot/[QSFP-module/]port | loopback intf-num} [vrf {vrf-name | default | management}]
None
Global configuration mode
|
|
---|---|
6.0(2)N1(2) |
Support for the QSFP+ GEM was added. |
5.2(1)N1(1) |
This command was introduced. |
This command does not require a license.
This example shows how to configure an Ethernet interface as the source interface for a DNS lookup:
switch# configure terminal
switch(config)# ip dns source-interface ethernet 1/5
switch(config)#
|
|
---|---|
ip domain-lookup |
Enables the DNS lookup feature. |
show ip dns source-interface |
Displays information about the DNS source interfaces. |
To configure the IP domain list, use the ip domain-list command. To disable the IP domain list, use the no form of the command.
ip domain-list domain-name [use-vrf name]
no ip domain-list domain-name [use-vrf name]
None
Global configuration mode
VRF context configuration mode
|
|
5.2(1)N1(1) |
This command was introduced. |
Use the ip domain-list command to configure additional domain names for the device. Use the vrf context command to enter the VRF context mode to configure additional domain names for a particular VRF.
This example shows how to configure the IP domain list for the default VRF:
switch# config terminal
switch(config)# ip domain-list Mysite.com
This example shows how to configure the IP domain list for the management VRF:
switch# config terminal
switch(config)# vrf context management
switch(config-vrf)# ip domain-list Mysite.com
This example shows how to configure the IP domain list for the default VRF to use the management VRF as a backup if the domain name cannot be resolved through the default VRF:
switch# config terminal
switch(config)# vrf context management
switch(config-vrf)# exit
switch(config)# ip domain-name Mysite.com use-vrf management
switch(config)# ip name-server 192.0.2.1
switch(config)# ip domain-list Mysite2.com
|
|
---|---|
show hosts |
Displays information about the IP domain name configuration. |
To enable the Domain Name Server (DNS) lookup feature, use the ip domain-lookup command. Use the no form of this command to disable this feature.
ip domain-lookup
no ip domain-lookup
This command has no arguments or keywords.
None
Global configuration mode
|
|
5.2(1)N1(1) |
This command was introduced. |
Use the ip domain-lookup command to enable DNS.
This example shows how to configure the DNS server lookup feature:
switch# config terminal
switch(config)# vrf context management
switch(config-vrf)# exit
switch(config)# ip domain-name Mysite.com use-vrf management
switch(config)# ip name-server 192.0.2.1
switch(config)# ip domain-lookup
switch(config)#
|
|
---|---|
show hosts |
Displays information about the DNS. |
To configure a domain name, use the ip domain-name command. To delete a domain name, use the no form of the command.
ip domain-name domain-name [use-vrf name]
no ip domain-name domain-name [use-vrf name]
None
Global configuration mode
VRF context configuration mode
|
|
5.2(1)N1(1) |
This command was introduced. |
Use the ip domain-name command to configure the domain name for the device. Use the vrf context command to enter the VRF context mode to configure the domain monastery for a particular VRF.
This example shows how to configure the IP domain name for the default VRF:
switch# config terminal
switch(config)# ip domain-name Mysite.com
switch(config)#
This example shows how to configure the IP domain name for the management VRF:
switch# config terminal
switch(config)# vrf context management
switch(config-vrf)# ip domain-name Mysite.com
switch(config-vrf)#
This example shows how to configure the IP domain name for the default VRF to use the management VRF as a backup if the domain name cannot be resolved through the default VRF:
switch# config terminal
switch(config)# vrf context management
switch(config-vrf)# exit
switch(config)# ip domain-name Mysite.com use-vrf management
To define static hostname-to-address mappings in the Domain Name System (DNS) hostname cache, use the ip host command. To remove a hostname-to-address mapping, use the no form of this command.
ip host name address1 [address2... address6]
no ip host name address1 [address2... address6]
None
Global configuration mode
|
|
---|---|
5.2(1)N1(1) |
This command was introduced. |
Use the ip host command to add a static hostname to DNS.
This example shows how to configure a static hostname:
switch(config)# ip host mycompany.com 192.0.2.1
|
|
---|---|
show hosts |
Displays information about the IP domain name configuration. |
To configure a name server, use the ip name-server command. To disable this feature, use the no form of the command.
ip name-server ip-address [use-vrf name]
no ip name-server ip-address [use-vrf name]
None
Global configuration mode
VRF context configuration mode
|
|
5.2(1)N1(1) |
This command was introduced. |
Use the ip name-server command to configure the name server for the device. Use the vrf context command to enter the VRF context mode to configure the domain names for a particular VRF.
This example shows how to configure the IP name server for the default VRF:
switch# config terminal
switch(config)# vrf context management
switch(config-vrf)# exit
switch(config)# ip domain-name Mysite.com use-vrf management
switch(config)# ip name-server 192.0.2.1
This example shows how to configure the IP name server for the management VRF:
switch# config terminal
switch(config)# vrf context management
switch(config-vrf)# ip name-server 192.0.2.1
This example shows how to configure the IP name server for the default VRF to use the management VRF as a backup if the IP name server cannot be reached through the default VRF:
switch# config terminal
switch(config)# vrf context management
switch(config-vrf)# exit
switch(config)# ip domain-name Mysite.com use-vrf management
switch(config)# ip name-server 192.0.2.1 use-vrf management
To apply an IPv4 access control list (ACL) to an interface as a port ACL, use the ip port access-group command. To remove an IPv4 ACL from an interface, use the no form of this command.
ip port access-group access-list-name {in | out}
no ip port access-group access-list-name {in | out}
None
Session interface configuration mode
|
|
---|---|
5.2(1)N1(1) |
This command was introduced. |
This example shows how to apply an IPv4 ACL named ip-acl-01 to the Ethernet interface 1/2 as a port ACL:
switch# configure session MySession1
switch(config-s)# interface ethernet 1/2
switch(config-s-if)# ip port access-group ip-acl-01 in
switch(config-s-if)#
This example shows how to remove an IPv4 ACL named ip-acl-01 from Ethernet interface 1/2:
switch(config-s)# interface ethernet 1/2
switch(config-s-if)# no ip port access-group ip-acl-01 in
switch(config-s-if)#
|
|
---|---|
show access-lists |
Displays all ACLs. |
show configuration session |
Displays the contents of the session. |