Configuration guidelines
When you configure an ACL, follow these guidelines:
You cannot create a rule with or modify a rule to have the same permit/deny statement as an
•
existing rule in the ACL.
You can only modify the existing rules of an ACL that uses the match order of config. When you
•
modify a rule of such an ACL, you can choose to change just some of the settings, in which case the
other settings remain the same.
Adding an IPv4 ACL
Select Advanced > QoS Setup > ACL IPv4 from the navigation tree and then select the Add tab to enter
the IPv4 ACL configuration page.
Figure 234 The page for adding an IPv4 ACL
Table 111 Configuration items
Item
ACL Number
Match Order
Description
Description
Set the number of the IPv4 ACL you want to configure. The value range for the ACL number
is 2000 to 2999.
Set the match order of the ACL:
•
Config—Packets are compared against ACL rules in the ascending ACL rule ID order.
•
Auto—Packets are compared against ACL rules in the depth-first match order. This makes
sure any subset of a rule is always matched before the rule.
Set the description for the ACL.
227