Acl Configuration Commands - H3C S5120-SI Series Command Reference Manual

Hide thumbs Also See for S5120-SI Series:

Table of Contents

ACL Configuration Commands

acl number acl-number [ name acl-name ] [ match-order { auto | config } ]

undo acl { all | name acl-name | number acl-number }

Default Level

2: System level

number acl-number: Specifies the number of an access control list (ACL):

2000 to 2999 for basic ACLs

3000 to 3999 for advanced ACLs

4000 to 4999 for Ethernet frame header ACLs

name acl-name: Assigns a name for the ACL for the ease of identification. The acl-name argument

takes a case insensitive string of 1 to 32 characters. It must start with an English letter, and, to avoid

confusion, cannot be all.

match-order: Sets the order in which ACL rules are compared against packets:

auto: Compares ACL rules in depth-first order. The depth-first order differs with ACL categories.

See ACL Configuration for more information.

config: Compares ACL rules in ascending order of rule ID. The rule with a smaller ID has higher

priority. If no match order is specified, the config order applies by default.

all: Deletes all ACLs.

Use the acl command to create an ACL and enter its view. If the ACL has been created, you enter its

view directly.

Use the undo acl command to delete the specified or all ACLs.

By default, no ACL exists.

You can assign a name for an ACL only when you create it. After creating an ACL, you can neither

rename it nor remove its name, if any.

Table of Contents