Create acl – Allied Telesis AT-S63 User Manual

Chapter 18: Access Control List Commands

322

Section II: Advanced Operations

CREATE ACL

Syntax

create acl=

value

[description=”

string

”]

[action=deny|permit] classifierlist=

value

[portlist=

ports

]

Parameters

acl

Specifies an ID number for the ACL. The number can be
from 0 to 255. Each ACL must have a unique ID number.

description

Specifies a description for the ACL. A description can be up
to 15 alphanumeric characters. Spaces are allowed. If the
description contains spaces, it must be enclosed in double
quotes. Otherwise, the quotes are optional.

action

Specifies the action to be taken by the port when a ingress
packet matches a classifier attached to the ACL. Options
are:

permit

The port accepts the packet.

deny

The port discards the packet, provided that the
packet does not match the classifier of a permit
ACL assigned to the same port. This is the
default action.

classifierlist

Specifies the ID numbers of the classifiers to be assigned
to the ACL. When entering multiple ID numbers, separate
the numbers with a comma (e.g., 4,6,7). The classifiers
must already exist on the switch or stack. The order in
which you specify the classifiers is not important. An ACL
must have at least one classifier.

portlist

Specifies the port for the ACL. An ACL can be assigned to
more than one port. For instructions on how to enter port
numbers, refer to “Port Numbers in Commands” on
page 47.

Description

This command creates access control lists (ACLs), which are used to filter
ingress packets on the ports.

Command

Available

AlliedWare Plus