F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices Access Control Command Reference-6PW100
2
• config—Compares ACL rules in ascending order of rule ID. The rule with a smaller ID has higher
priority. If no match order is specified, the config order applies by default.
all: Deletes all IPv4 basic, IPv4 advanced, or Ethernet frame header ACLs.
Usage guidelines
You can assign a name to an ACL only when you create it. After an ACL is created with a name, you
cannot rename it or remove its name.
You can change match order only for ACLs that do not contain any rules.
To display any ACLs you have created, use the display acl command.
Examples
# Create IPv4 basic ACL 2000, and enter its view.
<Sysname> system-view
[Sysname] acl number 2000
[Sysname-acl-basic-2000]
# Create IPv4 basic ACL 2001 with the name flow, and enter its view.
<Sysname> system-view
[Sysname] acl number 2001 name flow
[Sysname-acl-basic-2001-flow]
acl accelerate
Use acl accelerate to enable ACL acceleration for an IPv4 basic or IPv4 advanced ACL.
Use undo acl accelerate to disable ACL acceleration for an IPv4 basic or IPv4 advanced ACL.
Syntax
acl accelerate number acl-number
undo acl accelerate number acl-number
Default
ACL acceleration is disabled.
Views
System view
Default command level
2: System level
Parameters
number acl-number: Specifies the number of an existing ACL:
• 2000 to 2999 for IPv4 basic ACL
• 3000 to 3999 for IPv4 advanced ACL
Usage guidelines
ACL acceleration speeds up ACL lookup. The acceleration effect increases with the number of ACL rules.
ACL acceleration uses memory. To achieve the best trade-off between memory and ACL processing
performance, HP recommends enabling ACL acceleration for large ACLs, for example, ACLs that contain
less than 65535 rules.