Manualshelf

R3721-F3210-F3171-HP High-End Firewalls Access Control Command Reference-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
11121314151617181920
8
Examples
# Display the configuration and match statistics for all IPv4 basic, IPv4 advanced, and Ethernet frame
header ACLs.
<Sysname> display acl all
Basic ACL 2000, named flow, 3 rules,
ACL's step is 5
rule 0 permit
rule 5 permit source 1.1.1.1 0 (2 times matched)
rule 10 permit vpn-instance mk
Basic ACL 2001, named -none-, 3 rules, match-order is auto,
ACL's step is 5
rule 10 permit vpn-instance rd
rule 10 comment This rule is used in VPN rd.
rule 5 permit source 2.2.2.2 0
rule 0 permit
Table 1 Command output
Field
Descri
p
tion
Basic ACL 2000
Category and number of the ACL. The following field information is about IPv4
basic ACL 2000.
named flow The name of the ACL is flow. "-none-" means the ACL is not named.
3 rules
The ACL contains three rules.
match-order is auto
The match order for the ACL is auto, which sorts ACL rules in depth-first order.
This field is not present when the match order is config.
ACL's step is 5 The rule numbering step is 5.
rule 0 permit Content of rule 0
2 times matched
There have been two matches for the rule. The statistic counts only ACL matches
performed by software.
This field is not displayed when no packets have matched the rule.
rule 10 comment This rule is
used in VPN rd.
The description of ACL rule 10 is "This rule is used in VPN rd."
display acl accelerate
Syntax
display acl accelerate { acl-number | all } [ | { begin | exclude | include } regular-expression ]
View
Any view
Default level
1: Monitor level
Parameters
acl-number: Specifies an IPv4 ACL number: