544 BigIron RX Series Configuration Guide53-1002253-01Displaying ACL definitions21Parameters to bind super ACLs to an interfaceSuper ACLs can be applied to physical interfaces, trunk interfaces, and virtual interfaces. Theyfollow the same configuration constraints as the IPv4 ACLs, for example they cannot co-exist withan IPv4 ACL on the same interface.Syntax: [no] super-acl inDisplaying ACL definitionsTo display the ACLs configured on a device, use the show ip access-lists command.Numbered ACLFor a numbered ACL, you can enter a command such as the following.BigIron RX(config)#show access-list 99ACL configuration:!Standard IP access list 10access-list 99 deny host 10.10.10.1access-list 99 permit anySyntax: show access-list | allEnter the ACL number for the parameter:• 1 – 99 for standard ACLs• 100 – 199 for extended ACLs• 500 – 599 for super ACLsEnter all to display all of the ACLs configured on the device.Named ACLFor a named ACL, enter a command such as the following.sp Enables packet matching based on specified source TCP/UDP port.dp Enables packet matching based on specified destination TCP/UDP port.icmp-detail Enables packet matching based on ICMP information.801.2-priority-matching Enables packet matching based on the specified 802.1p priority value. Valid rangeis 0-7.ipsec-spi This parameter filters packets based on their IPSEC Security Parameter Index (SPI).Enter this value in hexadecimal. The range is 00000000 - fffffffffqos-marking Enables packet matching based on QoS marking.dscp-marking Enables packet matching based on DSCP marking.internal-priority-marking Enables packet matching based on internal priority marking.tcp-flags Enables packet matching based on TCP flags. Enables packet matching based on ICMP type/code.