Table of Contents
Advertisement
Command Reference Guide
Command History
Release 17.4
Functional Notes
AOS IPv4 ACPs are used to allow, discard, or manipulate (using NAT) data for each physical interface.
Each IPv4 ACP consists of an action (allow, discard, nat) and a selector (ACL). When packets are
received on an interface, the configured IPv4 ACPs are applied to determine whether the data will be
processed or discarded.
An implicit discard exists at the end of every IPv4 ACP. Specifying a discard list is
unnecessary in most applications and should be used with caution. A discard list can
adversely affect certain functions of a unit (virtual private network (VPN), routing
protocols, etc.). Specifying an empty IPv4 ACL or a nonexistent IPv4 ACL in an IPv4 ACP
will result in an implicit permit.
Usage Examples
The following example configures the IPv4 ACP PRIVATE using an undefined IPv4 ACL that matches all
traffic, specifies the NAT pool POOL1, and specifies that the traffic matching this entry should be destined
for the PUBLIC policy class:
(config)#ip policy-class PRIVATE
(config-policy-class)#nat source list MATCHALL pool POOL1 policy PUBLIC
60000CRG0-35E
Command was introduced.
Copyright © 2012 ADTRAN, Inc.
IPv4 Access Control Policy Command Set
3161
Advertisement
Table of Contents
