HP A6600 Configuration Manual page 13
Acl and qos
Hide thumbs
Also See for A6600:
- Configuration manual (501 pages) ,
- Getting started (222 pages) ,
- Limited warranty (41 pages)
Table of Contents
Advertisement
Compared to IPv4 basic ACLs, IPv4 advanced ACLs allow more flexible and accurate filtering.
To do...
1.
Enter system view.
2.
Create an IPv4 advanced ACL
and enter its view.
3.
Configure a description for the
IPv4 advanced ACL.
4.
Set the rule numbering step.
5.
Create or edit a rule.
6.
Configure or edit a rule
description.
Command...
system-view
acl number acl-number [ name
acl-name ] [ match-order { auto |
config } ]
description text
step step-value
rule [ rule-id ] { deny | permit }
protocol [ { { ack ack-value | fin
fin-value | psh psh-value | rst
rst-value | syn syn-value | urg
urg-value } * | established } |
counting | destination { dest-addr
dest-wildcard | any } |
destination-port operator port1
[ port2 ] | dscp dscp | fragment |
icmp-type { icmp-type icmp-code |
icmp-message } | logging |
precedence precedence | reflective
| source { sour-addr sour-wildcard
| any } | source- port operator
port1 [ port2 ] | time-range
time-range-name | tos tos |
vpn-instance vpn-instance- name ]
*
rule rule-id comment text
7
Remarks
––
Required.
By default, no ACL exists.
IPv4 advanced ACLs are
numbered in the range 3000 to
3999.
Use acl name acl-name to enter the
view of a named IPv4 ACL.
Optional.
By default, an IPv4 advanced ACL
has no ACL description.
Optional.
5 by default.
Required.
By default, an IPv4 advanced ACL
does not contain any rule.
To create or edit multiple rules,
repeat this step.
The logging keyword takes effect
only when the module (for
example, a firewall) using the ACL
supports logging.
Optional.
By default, an IPv4 advanced ACL
rule has no rule description.
Advertisement
Table of Contents
