1-1
1 ACL Configuration Commands
z The command used to apply ACL rules to a VLAN is newly added, which is described in
packet-filter vlan.
z The command used to configure VLAN information for Layer 2 ACLs is newly added, which is
described in
rule (for Layer 2 ACLs).
ACL Configuration Commands
acl
Syntax
acl number acl-number [ match-order { auto | config } ]
undo acl { all | number acl-number }
View
System view
Parameters
all: Specifies to remove all access control lists (ACLs).
number acl-number: Specifies the number of an existing ACL or an ACL to be defined. ACL number
identifies the type of an ACL as follows.
z An ACL number in the range 2000 to 2999 identifies a basic ACL.
z An ACL number in the range 3000 to 3999 identifies an advanced ACL. Note that 3998 and 3999
cannot be configured because they are reserved for cluster management.
z An ACL number in the range 4000 to 4999 identifies a layer 2 ACL.
z An ACL number in the range 5000 to 5999 identifies a user-defined ACL.
match-order: Specifies the match order for ACL rules. Following two match orders exist.
z auto: Specifies to match ACL rules according to the depth-first rule.
z config: Specifies to match ACL rules in the order they are defined.
Note that the match-order keyword is not available to Layer 2 ACLs or user-defined ACLs. The match
order for layer 2 ACLs or user defined ACLs can only be config. For details about the two match orders,
refer to the relevant description in ACL Operation.
To Next Page
Loading...
Need help?
General