3Com Switch 8800 Family IPsec Module Configuration and Command reference Guide
18
ACCESS CONTROL LIST
CONFIGURATION COMMANDS
ACL Configuration
Commands
acl Syntax
acl number acl-number [ match-order { config | auto } ]
undo acl { number acl-number | all }
View
System View
Parameter
number: Defines a numbered access control list (ACL).
acl-number: ACL number, with the range 1000 to 1999 for interface-based ACLs,
2000 to 2999 for basic ACLs, 3000 to 3999 for advanced ACLs, and 4000 to 4999
for MAC-based ACLs.
match-order: Indicates the order in which rules are configured.
config: Indicates to match the rule according to configuration order that the user
configured them.
auto: Indicates to match the rule in automatic order (in accordance with "Depth
first" principle.)
all: Deletes all ACLs.
Description
Use the acl command to create an access control list and enter ACL view.
Use the undo acl command to delete an access control list.
An access control list consists of a list of rules that are described by a series of
permit or deny sub-sentences. Several rule lists form an ACL. Before configuring
the rules for an access control list, you should create the access control list first.
Example
# Create an ACL numbered 2000.
[SecBlade_FW] acl number 2000
[SecBlade_FW-acl-basic-2000]