Command Reference ACL Commands
Defines an IPv4 access list.
Defines the deny access entries.
Defines the permit access entries.
Displays running configurations of the device.
1.19 ip access-list new-fragment-mode
Use this command to switch the matching mode of fragmentation packets of standard or extended IP
access list. Use the no form of this command to restore the default matching mode of fragmentation
packets.
ip access-list new-fragment-mode { id | name }
no ip access-list new-fragment-mode { id | name }
IP access list number:
Standard IP access list: 1 to 99, 1300 to 1999;
Extended IP access list: 100 to 199, 2000 to 2699.
Name of the standard or extended IP access list
Use the default matching mode of fragmentation packets. By default, if the access rule is tagged with
fragment, it will match all packets except for the first fragmentation packet. If the access rule is not
tagged with fragment, all packets including the first and all subsequent fragmentation packets will be
matched.
Global configuration mode
This command is used to switch and control the fragmentation packet matching mode of access
rules.
The following example switches the fragmentation packet matching mode of the ACL 100 from the
default mode to a new mode:
Ruijie(config)#ip access-list new-fragment-mode 100
To Next Page
Loading...
