Rule (Ipv6 Advanced Acl View) - HPE FlexNetwork HSR6800 series Command Reference Manual

Comware 7 acl and qos

Hide thumbs Also See for FlexNetwork HSR6800 series:

Security command reference (538 pages)

Configuration manual (503 pages)

Command reference manual (35 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

page of 153

/ 153
Contents
Table of Contents
Bookmarks

Table of Contents

acl logging interval

display acl

step

time-range

rule (IPv6 advanced ACL view)

Use rule to create or edit an IPv6 advanced ACL rule.

Use undo rule to delete an entire IPv6 advanced ACL rule or some attributes in the rule.

Syntax

rule [ rule-id ] { deny | permit } protocol [ { { ack ack-value | fin fin-value | psh psh-value | rst

rst-value | syn syn-value | urg urg-value } * | established } | counting | destination { object-group

address-group-name | dest-address dest-prefix | dest-address/dest-prefix | any } | destination-port

{ object-group port-group-name | operator port1 [ port2 ] } | dscp dscp | flow-label flow-label-value

| fragment | icmp6-type { icmp6-type icmp6-code | icmp6-message } | logging | routing [ type

routing-type ] | hop-by-hop [ type hop-type ] | source { object-group address-group-name |

source-address source-prefix | source-address/source-prefix | any } | source-port { object-group

port-group-name | operator port1 [ port2 ] } | time-range time-range-name | vpn-instance

vpn-instance-name ] *

undo rule rule-id [ { { ack | fin | psh | rst | syn | urg } * | established } | counting | destination |

source | source-port | time-range | vpn-instance ] *

undo rule { deny | permit } protocol [ { { ack ack-value | fin fin-value | psh psh-value | rst rst-value

| syn syn-value | urg urg-value } * | established } | counting | destination { object-group

address-group-name | dest-address dest-prefix | dest-address/dest-prefix | any } | destination-port

{ object-group port-group-name | operator port1 [ port2 ] } | dscp dscp | flow-label flow-label-value

| fragment | icmp6-type { icmp6-type icmp6-code | icmp6-message } | logging | routing [ type

routing-type ] | hop-by-hop [ type hop-type ] | source { object-group address-group-name |

source-address source-prefix | source-address/source-prefix | any } | source-port { object-group

port-group-name | operator port1 [ port2 ] } | time-range time-range-name | vpn-instance

vpn-instance-name ] *

Default

No IPv6 advanced ACL rules exist.

Views

IPv6 advanced ACL view

Predefined user roles

network-admin

Parameters

rule-id: Specifies a rule ID in the range of 0 to 65534. If you do not specify a rule ID when creating an

ACL rule, the system automatically assigns it a rule ID. This rule ID is the nearest higher multiple of

the numbering step to the current highest rule ID, starting from 0. For example, if the rule numbering

step is 5 and the current highest rule ID is 28, the rule is numbered 30.

deny: Denies matching packets.

permit: Allows matching packets to pass.

protocol: Specifies one of the following values:

•

A protocol number in the range of 0 to 255.

Table of Contents

Rule (Ipv6 Advanced Acl View) - HPE FlexNetwork HSR6800 series Command Reference Manual

rule (IPv6 advanced ACL view)

Related Manuals for HPE FlexNetwork HSR6800 series

Related Content for HPE FlexNetwork HSR6800 series

Table of Contents