Rule (Layer 2 Acl) - Huawei Quidway S3900 series Command Manual

Command Manual – ACL
Quidway S3900 Series Ethernet Switches-Release 1510
fragment: Deletes the settings effective for non-initial fragment packets in the rule
corresponding to the rule ID.
Description
Use the rule command to define an ACL rule.
Use the undo rule command to delete an ACL rule or the attribute information of an
ACL rule.
Before you can delete a rule, you need to specify the rule ID. If you do not know the
rule ID, you can view it by the display acl command.
In the case that you specify the rule ID when defining a rule:
If the rule corresponding to the specified rule ID already exists, you will edit the
rule, and the modified part in the rule will replace the original content, while other
parts remain unchanged.
If the rule corresponding to the specified rule ID does not exists, you will create
and define a new rule.
The content of a modified or created rule must not be identical with the content of
any existing rule; otherwise the rule modification or creation will fail, and the
system will prompt that the rule already exists.
If you do not specify a rule ID, you will create and define a new rule, and the system
will assign an ID for the rule automatically.
Example
# Define a rule to permit packets from hosts in the network segment of 129.9.0.0 to
hosts in the network of 202.38.160.0 and with the port number of 80 to pass.
<Quidway> system-view
System View: return to User View with Ctrl+Z.
[Quidway] acl number 3101
[Quidway-acl-adv-3101]
destination 202.38.160.0 0.0.0.255 destination-port eq 80

1.1.9 rule (Layer 2 ACL)

Syntax
rule [ rule-id ] { permit | deny } [ rule-string ]
undo rule rule-id
View
Layer 2 ACL view
Parameter
1) Parameters of the rule command:
rule permit
Huawei Technologies Proprietary
1-14
Chapter 1 ACL Commands
tcp source 129.9.0.0 0.0.255.255