Filter
Top Products
3Com Switch 7750 Series
Command Reference Guide – ACL Chapter 1 ACL Commands
1-15
Before you can delete a rule, you need to specify the rule ID. If you do not know the
rule ID, you can view it by the display acl command.
In the case that you specify the rule ID when defining a rule:
z If the rule corresponding to the specified rule ID already exists, you will edit the
rule, and the modified part in the rule will replace the original content, while other
parts remain unchanged.
z If the rule corresponding to the specified rule ID does not exists, you will create
and define a new rule.
z The content of a modified or created rule must not be identical with the content of
any existing rule; otherwise the rule modification or creation will fail, and the
system will prompt that the rule already exists.
If you do not specify a rule ID, you will create and define a new rule, and the system
will assign an ID for the rule automatically.
Note:
The ACL rule configured with the fragment keyword can not be applied to the A type
card.
Example
# Define a rule to deny the packets whose source IP addresses are 1.1.1.1.
<3Com> system-view
System View: return to User View with Ctrl+Z.
[3Com] acl number 2000
[3Com-acl-basic-2000] rule deny source 1.1.1.1 0
1.1.14 rule (Advanced ACL)
Syntax
rule [ rule-id ] { permit | deny } rule-string
undo rule rule-id [ source | destination | source-port | destination-port | icmp-type
| precedence | tos | dscp | fragment | time-range ]*
View
Advanced ACL view
Parameter
rule-id: ACL rule ID, in the range of 0 to 127.
deny: Drops packets that satisfy the condition.