CLI Reference Guide ACL Configuration Commands
ip access-list new-fragment-mode
Use this command to switch the matching mode of fragmentation packets of extended IP ACL. Use
the no form of this command to restore the default matching mode of fragmentation packets.
ip access-list new-fragment-mode { id | name }
no ip access-list new-fragment-mode { id | name }
It indicates the number of the extended IP ACL, which ranges from
100 to 199, and from 2000 to 2699.
Name of the extended IP ACL
Use the default matching mode of fragmentation packets. By default, if the ACL rule is tagged with
fragment, it will match all packets except for the first fragmentation packet. If the ACL rule is not
tagged with fragment, all packets including the first and all subsequent fragmentation packets will be
matched.
Global configuration mode
This command is used to switch and control the fragmentation packet matching mode of ACL rules.
Use the show running command to view the setting.
The following example switches the fragmentation packet matching mode of the ACL No.100 from the
default mode to a new mode:
Ruijie(config)#ip access-list new-fragment-mode 100
This command is supported only in 10.4 (3b16), 10.4 (3b17), 10.4 (5b1) and later versions.
ip access-list resequence
Use this command to rearrange entries of an IP ACL and enter the configuration mode. Use the no
form of this command to restore the default setting.
ip access-list resequence {id | name} start-sn inc-sn
no ip access-list resequence {id | name}
To Next Page
Loading...
