Filter Configuration Command Reference
536 Router Configuration Guide
Parameters entry-id — An entry-id uniquely identifies a match criteria and the corresponding action. It is
recommended that multiple entries be given entry-id in staggered increments. This allows
users to insert a new entry in an existing policy without requiring to renumber all the existing
entries. The parameter is expressed as a decimal integer.
Values 1 to 65535
create — Keyword required to create the configuration context. Once the context is created, the
user can enable the context with or without the create keyword.
action
Syntax action [secondary]
no action [secondary]
Context config>filter>ip-filter>entry
config>filter>ipv6-filter>entry
config>filter>mac-filter>entry
Description This command enters the context to configure a primary (no option specified) or secondary (secondary
option specified) action to be performed on packets matching this filter entry. An ACL filter entry
remains inactive (is not programmed in hardware) until a specific action is configured for that entry.
A primary action supports any filter entry action, a secondary action is used for redundancy and defines
a redundant L2 PBF action for an L2 PBR primary action.
The no form of this command removes the specific action configured in the context of the action
command. The primary action can not be removed if a secondary action exists.
Default no action
Parameters secondary — Secondary action to be performed on packets matching this filter entry. A
secondary actions can only be configured if a primary action is configured.
log
Syntax log log-id
no log
Context config>filter>ip-filter>entry
config>filter>ipv6-filter>entry
config>filter>mac-filter>entry
Description This command associates a filter log to the current filter policy entry and therefore enables logging for
that filter entry.
The filter log must exist before a filter entry can be enabled to use the filter log.
The no form of the command disables logging for the filter entry.
To Next Page
Loading...
