Copying An Acl; Copying An Ipv4 Basic, Ipv4 Advanced, Or Ethernet Frame Header Acl - HP 5830 Series Configuration Manual
Acl and qos
Hide thumbs
Also See for 5830 Series:
- Installation manual (66 pages) ,
- Configuration manual (170 pages)
Table of Contents
Advertisement
Step
1.
Enter system view.
2.
Create an
Ethernet frame
header ACL and
enter its view.
Configure a
3.
description for the
Ethernet frame
header ACL.
4.
Set the rule
numbering step.
5.
Create or edit a
rule.
6.
Add or edit a rule
comment.
7.
Add or edit a rule
range remark.
8.
Enable rule match
counting for the
Ethernet frame
header ACL.
Copying an ACL
You can create an ACL by copying an existing ACL (source ACL). The new ACL (destination ACL) has the
same properties and content as the source ACL, but not the same ACL number and name.
To successfully copy an ACL, make sure that:
The destination ACL number is from the same category as the source ACL number.
•
•
The source ACL already exists, but the destination ACL does not.
Copying an IPv4 basic, IPv4 advanced, or Ethernet frame
header ACL
Command
system-view
acl number acl-number
[ name acl-name ]
[ match-order { auto |
config } ]
description text
step step-value
rule [ rule-id ] { deny |
permit } [ cos vlan-pri |
counting | dest-mac
dest-address dest-mask |
{ lsap lsap-type
lsap-type-mask | type
protocol-type
protocol-type-mask } |
source-mac source-address
source-mask | time-range
time-range-name ] *
rule rule-id comment text
rule [ rule-id ] remark text
hardware-count enable
9
Remarks
N/A
By default, no ACL exists.
Ethernet frame header ACLs are numbered in the
range of 4000 to 4999.
You can use the acl name acl-name command to enter
the view of a named Ethernet frame header ACL.
Optional.
By default, an Ethernet frame header ACL has no ACL
description.
Optional.
The default setting is 5.
,
By default
an Ethernet frame header ACL does not
contain any rules.
If the ACL is for QoS traffic classification or packet
filtering, to use the lsap keyword, the lsap-type
argument must be AAAA, and the lasp-type-mask
argument must be FFFF. Otherwise, the ACL cannot
function normally.
Optional.
By default, no rule comments are configured.
Optional.
By default, no rule range remarks are configured.
Optional.
By default, rule match counting is disabled for an
Ethernet frame header ACL.
Advertisement
Table of Contents
