3Com Router 3000 Ethernet Family
Configuration Guide
In above rule entries, all entries are valid for non-first fragments. The first and the third
entries are omitted for non-fragments and first fragment, only valid for non-first
fragments.
5.2 Configuring an ACL
ACL configuration includes:
Configure basic ACL
Configure advanced ACL
Configure interface-based ACL
Configure MAC-based ACL
Delete ACL
5.2.1 Configuring an Basic ACL
Perform the following configuration.
Table 5-4 Configure basic ACL
Operation
Create a basic ACL in
system view.
Configure/delete an ACL
rule in basic ACL view.
For detailed introduction to parameters, refer to basic ACL.
5.2.2 Configuring an Advanced ACL
Perform the following configuration.
Table 5-5 Configure advanced ACL
Create an advanced ACL in system
view.
acl number acl-number [ match-order { config |
auto } ]
rule [ rule-id ] { permit | deny } source [ source-addr
source-wildcard | any ] [ time-range time-name ]
[
logging
vpn-instance-name ]
undo rule rule-id [ source ] [ time-range ] [ logging ]
[ vpn-instance vpn-instance-name ] [ fragment ]
Operation
3Com Corporation
5-14
Chapter 5 ACL Configuration
Command
]
[
fragment
]
Command
acl number acl-number [ match-order
{ config | auto } ]
[
vpn-instance