Manualshelf

Command Reference Guide

ManualsBrandsHP ManualsRoutersHP 3000 Router Series
1101110211031104110511061107110811091110
3Com Router 3000 Ethernet Family
Command Reference Guide
Chapter 3 Access Control List Configuration
Commands
3Com Corporation
3-3
Example
# Reset the statistics of access control list 1000.
<3Com> reset acl counter 1000
3.1.4 rule
Syntax
1) Create or delete a rule of a basic access control list.
rule [ rule-id ] { permit | deny | comment text } source [ sour-addr sour-wildcard | any ]
[ time-range time-name ] [ logging ] [ fragment ] [ vpn-instance vpn-instance-name ]
undo rule rule-id [ comment text ] [ source ] [ time-range ] [ logging ] [ fragment ]
[ vpn-instance vpn-instance-name ]
2) Create or delete a rule of an advanced access control list.
rule [ rule-id ] { permit | deny | comment text } protocol source [ sour-addr
sour-wildcard | any ] destination [ dest-addr wildcard | any ] [ source-port operator
port1 [ port2 ] ] [ destination-port operator port1 [ port2 ] ] [ icmp-type { icmp-message
|icmp-type icmp-code} ] [ dscp dscp ] [ established ] [ precedence precedence ] [ tos
tos ] [ time-range time-name ] [ logging ] [ fragment ] [ vpn-instance ]
undo rule rule-id [ comment text ] [ source ] [ destination ] [ source-port ]
[ destination-port ] [ icmp-type ] [ dscp ] [ precedence ] [ tos ] [ time-range ]
[ logging ] [ fragment ] [ vpn-instance vpn-instance-name ]
3) Create or delete a rule of an interface-based ACL rule.
rule [ rule-id ] { permit | deny | comment text } interface { interface-type
interface-number | any } [ time-range time-name ] [ logging ]
undo rule rule-id [ comment text ] [ time-range | logging ] *
4) Add/delete a MAC-based ACL rule
rule [ rule-id ] { deny | permit | comment text } [ type type-code type-mask | lsap
lsap-code lsap-mask ] [ source-mac sour-addr sour-mask ] [ dest-mac dest-addr
dest-mask ]
undo rule rule-id [ comment text ]
View
ACL view
Parameter
In the rule command:
rule-id: ID of an ACL rule, optional, ranging from 0 to 65534. If you specify a rule-id, and
the ACL rule related to the ID already exists, the newly defined rule will overwrite the
existing rule, just as editing the existing ACL rule. If the rule-id you specify does not