Download Print this page

Rule (Ipv4 Advanced Acl View) - HPE FlexFabric 5940 Series Command Reference Manual

Hide thumbs Also See for FlexFabric 5940 Series:

Security configuration manual (571 pages)

,

Configuration manual (334 pages)

,

Fundamentals command reference (289 pages)

Table Of Contents

page of 139

/ 139
Contents
Table of Contents
Bookmarks

Table of Contents

Advertisement

mac: Specifies the Layer 2 ACL type.

acl-number: Specifies an ACL by its number.

•

2000 to 2999 for basic ACLs.

•

3000 to 3999 for advanced ACLs.

•

4000 to 4999 for Layer 2 ACLs.

name acl-name: Specifies an ACL by its name. The acl-name argument is a case-insensitive string

of 1 to 63 characters.

Usage guidelines

If acl-number, name acl-name, ipv6, or mac is not specified, this command clears the packet

filtering statistics for all ACLs.

To specify the IPv4 ACL type, do not specify the ipv6 or mac keyword.

Examples

# Clear IPv4 basic ACL 2001 statistics for inbound packet filtering on Ten-GigabitEthernet 1/0/1.

<Sysname> reset packet-filter statistics interface ten-gigabitethernet 1/0/1 inbound 2001

Related commands

display packet-filter statistics

display packet-filter statistics sum

rule (IPv4 advanced ACL view)

Use rule to create or edit an IPv4 advanced ACL rule.

Use undo rule to delete an entire IPv4 advanced ACL rule or some attributes in the rule.

Syntax

rule [ rule-id ] { deny | permit } protocol [ { { ack ack-value | fin fin-value | psh psh-value | rst

rst-value | syn syn-value | urg urg-value } * | established } | counting | destination { dest-address

dest-wildcard | any } | destination-port operator port1 [ port2 ] | { dscp dscp | { precedence

precedence | tos tos } * } | fragment | icmp-type { icmp-type [ icmp-code ] | icmp-message } |

logging | source { source-address source-wildcard | any } | source-port operator port1 [ port2 ] |

time-range time-range-name | vpn-instance vpn-instance-name ] *

undo rule rule-id [ { { ack | fin | psh | rst | syn | urg } * | established } | counting | destination |

destination-port | { dscp | { precedence | tos } * } | fragment | icmp-type | logging | source |

source-port | time-range | vpn-instance ] *

undo rule { deny | permit } protocol [ { { ack ack-value | fin fin-value | psh psh-value | rst rst-value

| syn syn-value | urg urg-value } * | established } | counting | destination { dest-address

dest-wildcard | any } | destination-port operator port1 [ port2 ] | { dscp dscp | { precedence

precedence | tos tos } * } | fragment | icmp-type { icmp-type [ icmp-code ] | icmp-message } |

logging | source { source-address source-wildcard | any } | source-port operator port1 [ port2 ] |

time-range time-range-name | vpn-instance vpn-instance-name ] *

Default

No IPv4 advanced ACL rules exist.

Views

IPv4 advanced ACL view

Predefined user roles

network-admin

19

Table of Contents

Show Quick Links

Quick Links:
Burst-Mode Enable

Hide quick links:

Advertisement

Table of Contents