HP A8800 Series Command Reference Manual page 28

Acl and qos

Hide thumbs Also See for A8800 Series:

Configuration manual (487 pages)

Installation manual (121 pages)

Fundamentals command reference (193 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

page of 153

/ 153
Contents
Table of Contents
Bookmarks

Table of Contents

undo rule rule-id [ { { ack | fin | psh | rst | syn | urg } * | established } | counting | destination |

source-port | time-range | tos | vpn-instance ] *

View

IPv4 advanced ACL view

Default level

2: System level

Parameters

rule-id: Specifies a rule ID, in the range of 0 to 65534. If no rule ID is provided when you create an ACL

rule, the system automatically assigns it a rule ID. This rule ID takes the nearest higher multiple of the

numbering step to the current highest rule ID, starting from 0. For example, if the rule numbering step is

5 and the current highest rule ID is 28, the rule is numbered 30.

deny: Denies matching packets.

permit: Allows matching packets to pass.

protocol: Protocol carried by IPv4. It can be a number in the range of 0 to 255, or in words, gre (47),

icmp (1), igmp (2), ip, ipinip (4), ospf (89), tcp (6), or udp (17).

can specify regardless of the value that the protocol argument takes.

Table 8 Match criteria and other rule information for IPv4 advanced ACL rules

Parameters

source { source-address

source-wildcard | any }

destination { dest-address

dest-wildcard | any }

counting

precedence precedence

tos tos

Function

Specifies a source address

Specifies a destination

address

Counts the number of times

the IPv4 ACL rule has been

matched, and disabled by

default

Specifies an IP precedence

value

Specifies a ToS preference

Table 8

describes the parameters that you

Description

The source-address source-wildcard arguments

represent a source IP address and wildcard

mask in dotted decimal notation. An all-zero

wildcard specifies a host address.

The any keyword specifies any source IP

address.

The dest-address dest-wildcard arguments

represent a destination IP address and wildcard

mask in dotted decimal notation. An all-zero

wildcard specifies a host address.

The any keyword represents any destination IP

address.

This keyword is valid when the rule is applied to

the packet filtering firewall.

The precedence argument can be a number in

the range of 0 to 7, or in words, routine (0),

priority (1), immediate (2), flash (3),

flash-override (4), critical (5), internet (6), or

network (7).

The tos argument can be a number in the range

of 0 to 15, or in words, max-reliability (2),

max-throughput (4), min-delay (8),

min-monetary-cost (1), or normal (0).

Table of Contents

HP A8800 Series Command Reference Manual page 28

Related Manuals for HP A8800 Series

Related Products for HP A8800 Series

Table of Contents