User Manual
SURPASS hiD 6615 S223/S323 R1.5
7.6.4.4
7.6.4.5
i
A50010-Y3-C150-2-7619
Rule Action
To specify a rule action (match) for the packets matching configured classifying patterns,
use the following command.
Command
match deny
match permit
To delete a specified rule action (match), use the following command.
Command
no match deny
no match permit
To specify a rule action (no-match) for the packets not matching configured classifying
patterns, use the following command.
Command
no-match deny
no-match permit
To delete a specified rule action (no-match), use the following command.
Command
no no-match deny
no no-match permit
Applying Rule
After configuring rule using the above commands, apply it to the system with the following
command. If you do not apply a rule to the system, all specified rules will be lost.
To save and apply an admin access rule, use the following command.
Command
apply
1.
The switch performs a detailed plausibility check and rejects the rule if the
configuration is incomplete, contains bad or unsupported values or conflicts to other
rules. In this case, the switch informs about the reason and the operator may correct
the values
2.
The switch may reject a rule with the message "% Already exist rule" allthough the
name will not be listed by command, show rule. Unfortunately, the entered name in
this case interferes with the name of an internally managed rule.
Remedy: Select another name for the rule (e.g. add a prefix).
3.
All previously entered values remain valid after successful (or unsuccessful)
Mode
Denies a packet.
Admin-rule
Permits a packet.
Mode
Admin-rule
Deletes a specified rule action.
Mode
Denies a packet.
Admin-rule
Permits a packet.
Mode
Admin-rule
Deletes a specified rule action.
Mode
Admin-rule
Applies an admin access rule to the system.
UMN:CLI
Description
Description
Description
Description
Description
153