4-10
Copying an ACL
You can create an ACL by copying an existing ACL. The new ACL has the same properties and content
as the source ACL except the ACL number and name.
To successfully copy an ACL, ensure that:
z
The destination ACL number is from the same category as the source ACL number.
z
The source ACL already exists but the destination ACL does not.
Copying an IPv4 ACL
Follow these steps to copy an IPv4 ACL:
To do…
Use the command…
Remarks
Enter system view
system-view
—
Copy an existing IPv4 ACL to
create a new IPv4 ACL
acl copy
{
source-acl-number
|
name
source-acl-name
}
to
{
dest-acl-number
|
name dest-acl-name
}
Required
The
name
keyword is not
available for WLAN ACLs
Copying an IPv6 ACL
Follow these steps to copy an IPv6 ACL:
To do…
Use the command…
Remarks
Enter system view
system-view
—
Copy an existing IPv6 ACL to
generate a new one of the
same category
acl ipv6 copy
{
source-acl6-number
|
name
source-acl6-name
}
to
{
dest-acl6-number
|
name
dest-acl6-name
}
Required
Displaying and Maintaining ACLs
To do...
Use the command…
Remarks
Display configuration and match
statistics for one or all IPv4 ACLs
display
acl
{
acl-number
|
all
|
name
acl-name
}
Available in any view
Display configuration and match
statistics for one or all IPv6 ACLs
display
acl
ipv6
{
acl6-number
|
all
|
name
acl6-name
}
Available in any view
Display the configuration and
status of one or all time ranges
display time-range
{
time-range-name
|
all
}
Available in any view
Clear statistics for one or all IPv4
ACLs
reset
acl
counter
{
acl-number
|
all
|
name
acl-name
}
Available in user
view
Clear statistics for one or all IPv6
basic and advanced ACLs
reset
acl
ipv6
counter
{
acl6-number
|
all
|
name
acl6-name
}
Available in user
view
ACL Configuration Examples
IPv4 ACL Configuration Example
Network Requirements
A company interconnects its departments through the wireless AP. Configure an ACL to:
