Copying an acl, Copying an ipv4 acl – H3C Technologies H3C WX3000E Series Wireless Switches User Manual
Page 18
9
Step
Command
Remarks
2.
Create an Ethernet frame
header ACL and enter its
view.
acl number acl-number [ name
acl-name ] [ match-order { auto |
config } ]
By default, no ACL exists.
Ethernet frame header ACLs are
numbered in the range 4000 to
4999.
You can use the acl name acl-name
command to enter the view of a
named Ethernet frame header
ACL.
3.
Configure a description for
the Ethernet frame header
ACL.
description text
Optional.
By default, an Ethernet frame
header ACL has no ACL
description.
4.
Set the rule numbering step.
step step-value
Optional.
5 by default.
5.
Create or edit a rule.
rule [ rule-id ] { deny | permit } [ cos
vlan-pri | counting | dest-mac
dest-addr dest-mask | { lsap
lsap-type lsap-type-mask | type
protocol-type protocol-type-mask }
| source-mac sour-addr
source-mask | time-range
time-range-name ] *
By default
,
an Ethernet frame
header ACL does not contain any
rule.
To create or edit multiple rules,
repeat this step.
6.
Configure or edit a rule
description.
rule rule-id comment text
Optional.
By default, an Ethernet frame
header ACL rule has no rule
description.
Copying an ACL
You can create an ACL by copying an existing ACL. The new ACL has the same properties and content
as the source ACL except the ACL number and name.
To successfully copy an ACL, make sure that:
•
The destination ACL number is from the same category as the source ACL number.
•
The source ACL already exists but the destination ACL does not.
Copying an IPv4 ACL
Step Command
Remarks
1.
Enter system view.
system-view
N/A
2.
Copy an existing IPv4 ACL to
create a new IPv4 ACL.
acl copy { source-acl-number |
name source-acl-name } to
{ dest-acl-number | name
dest-acl-name }
The name keyword is not available
for WLAN ACLs