Command Manual - QoS/ACL
Quidway S6500 Series Ethernet Switches Chapter 1 ACL Command
Huawei Technologies Proprietary
1-11
1.1.9 rule
Syntax
I. define/delete a rule for basic acl
rule [ rule-id ] { permit | deny } [ source { source-addr wildcard | any } ] [ fragment ]
[ time-range name ]
undo rule rule-id [ source ] [ fragment ] [ time-range ]
II. define/delete a rule for advanced acl
rule [ rule-id ] { permit | deny } protocol [ source { source-addr wildcard | any } ]
[ destination { dest-addr dest-mask | any } ] [ source-port operator port1 [ port2 ] ]
[ destination-port operator port1 [ port2 ] ] [ icmp-type type code ] [ established ]
[ [ precedence precedence | tos tos ]* | dscp dscp ] [ fragment ] [ time-range name ]
undo rule rule-id [ source ] [ destination ] [ source-port ] [ destination-port ]
[ icmp-type ] [ precedence ] [ tos ] [ dscp ] [ fragment ] [ time-range ]
III. define/delete a rule for link acl
rule [ rule-id ] { permit | deny } [ protocol-type | format-type | cos cos | ingress
{ { source-vlan-id | source-mac-addr }* | any } | egress { dest-mac-addr | any } |
time-range name ]*
undo rule rule-id
IV. define/delete a rule for user-defined acl
rule [ rule-id ] { permit | deny } { rule-string rule-mask offset }&<1-8> [ time-range
name ]
undo rule rule-id
 Note:
User-defined ACL can only be activated on the cards except A type ones.
View
Corresponding ACL view
To Next Page
Loading...
