H3C S6550X-HI Series Command Reference Manual page 2144

The
undo rule rule-id
specify optional parameters, the
a rule.
The
undo rule { deny | permit }
specify all the attributes of the rule for the command.
The
counting
hardware-count
hardware for all rules in an ACL. For more information about the
packet filter commands in Security Command Reference.
Examples
# Create an IPv6 basic ACL rule to deny the packets from any source IP subnet but 1001::/16,
3124:1123::/32, or FE80:5060:1001::/48.
<Sysname> system-view
[Sysname] acl ipv6 basic 2000
[Sysname-acl-ipv6-basic-2000] rule permit source 1001:: 16
[Sysname-acl-ipv6-basic-2000] rule permit source 3124:1123:: 32
[Sysname-acl-ipv6-basic-2000] rule permit source fe80:5060:1001:: 48
[Sysname-acl-ipv6-basic-2000] rule deny source any
Related commands
acl
display acl
packet-filter
packet-filter global
step
time-range
rule (Layer 2 ACL view)
Use to create or edit a Layer 2 ACL rule.
rule
Use
undo rule
Syntax
rule [ rule-id ] { deny | permit } [ cos dot1p | counting | dest-mac
dest-address
protocol-type
source-mask | time-range time-range-name ] *
undo rule rule-id [ counting | time-range ] *
undo rule { deny | permit } [ cos dot1p | counting | dest-mac dest-address
dest-mask | { lsap lsap-type lsap-type-mask | type protocol-type
protocol-type-mask } | source-mac source-address source-mask | time-range
time-range-name ] *
Default
No Layer 2 ACL rules exist.
Views
Layer 2 ACL view
command without any optional parameters deletes an entire rule. If you
undo rule rule-id
command can only be used to delete an entire rule. You must
keyword in this command enables match counting specific to rules, and the
keyword in the
(interface view) (Security Command Reference)
(Security Command Reference)
to delete an entire Layer 2 ACL rule or some attributes in the rule.
dest-mask | {
protocol-type-mask
command deletes the specified attributes for
command enables match counting in
packet-filter
lsap lsap-type
} |
20
packet-filter
lsap-type-mask
source-mac source-address
command , see
| type