Configuring A Basic Acl; Configuring An Advanced Acl - Huawei Quidway S9300 Configuration Manual

11 ACL Configuration
The description of an ACL is a string of up to 127 characters, describing the usage of the ACL.
By default, no description is configured for an ACL.
----End

11.3.5 Configuring a Basic ACL

Context
Do as follows on the S9300.
Procedure
Step 1 Run:
system-view
The system view is displayed.
Step 2 Run:
acl [ number ] acl-number [ match-order { auto | config } ]
A basic ACL is created.
To create a basic ACL, you can set the value of acl-number ranging from 2000 to 2999.
match-order indicates the match order of ACL rules.
l
l
If match-order is not used, the match order is config.
Step 3 Run:
rule [ rule-id ] { deny | permit } [ fragment | source { source-address source-
wildcard | any } | time-range time-name ]
An ACL rule is created.
----End

11.3.6 Configuring an Advanced ACL

Procedure
Step 1 Run:
system-view
The system view is displayed.
Step 2 Run:
acl [ number ] acl-number [ match-order { auto | config } ]
An advanced ACL is created.
To create an advanced ACL, the value of acl-number ranges from 3000 to 3999.
match-order indicates the match order of ACL rules.
11-6
auto: indicates that the ACL rules are matched on the basis of depth first principle.
config: indicates that the rules are matched on the basis of the configuration order.
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
Quidway S9300 Terabit Routing Switch
Configuration Guide - Security
*
Issue 06 (2010–01–08)