1-14
z
When the ACL match order is
auto
, a newly created rule will be inserted among the existing rules
in the depth-first match order. Note that the IDs of the rules still remain the same.
You can modify the match order of an ACL with the
acl number
acl-number
[
name acl-name
]
match-order
{
auto
|
config
} command but only when it does not contain any rules.
Copying an ACL
You can create an ACL by copying an existing ACL. The new ACL has the same properties and content
as the source ACL except the ACL number and name.
To copy an IPv4 or IPv6 ACL successfully, ensure that:
z
The destination ACL number is from the same category as the source ACL number.
z
The source IPv4 or IPv6 ACL already exits but the destination IPv4 or IPv6 ACL does not.
Copying an IPv4 ACL
Follow these steps to copy an IPv4 ACL:
To do…
Use the command…
Remarks
Enter system view
system-view
—
Copy an existing IPv4 ACL to
create a new IPv4 ACL
acl copy
{
source-acl-number
|
name source-acl-name
}
to
{
dest-acl-number
|
name
dest-acl-name
}
Required
Copying an IPv6 ACL
Follow these steps to copy an IPv6 ACL:
To do…
Use the command…
Remarks
Enter system view
system-view
—
Copy an existing IPv6 ACL to
generate a new one of the same
category
acl ipv6 copy
{
source-acl6-number
|
name
source-acl6-name
}
to
{
dest-acl6-number
|
name
dest-acl6-name
}
Required
The generated ACL does not take the name of the source ACL.