Command Manual – ACL
Quidway S3900 Series Ethernet Switches-Release 1510
Chapter 1 ACL Commands
Huawei Technologies Proprietary
1-18
z
If the rule corresponding to the specified rule ID already exists, you will edit the
rule, and the modified part in the rule will replace the original content, while other
parts remain unchanged.
z
If the rule corresponding to the specified rule ID does not exists, you will create
and define a new rule.
z
The content of a modified or created rule must not be identical with the content of
any existing rule; otherwise the rule modification or creation will fail, and the
system will prompt that the rule already exists.
If you do not specify a rule ID, you will create and define a new rule, and the system
will assign an ID for the rule automatically.
Example
# Define a rule to forbid all TCP packets to pass through.
<Quidway> system-view
System View: return to User View with Ctrl+Z.
[Quidway] acl number 5001
[Quidway-acl-user-5001] rule 25 deny 06 ff 35 time-range t1
1.1.11 rule comment
Syntax
rule
rule-id
comment
text
undo
rule
rule-id
comment
View
Advanced ACL view, Layer 2 ACL view, user-defined ACL view
Parameter
comment
text
: Specifies the comment string for an ACL rule, which must a string of up
to 127 characters.
Description
Use the
rule
comment
command to define the comment string for an ACL rule.
Use the
undo
rule
comment
command to delete the comment string for an ACL rule.
Before defining the comment string for an ACL rule, make sure that this ACL rule
exists.
Example
# Define the comment string of Rule 0 of ACL 3000 as “test”.
<Quidway> system-view
System View: return to User View with Ctrl+Z.