4 rule action, 5 applying rule, 4 rule action 7.6.4.5 applying rule – Siemens S223 User Manual
Page 153
User Manual UMN:CLI
SURPASS hiD 6615 S223/S323 R1.5
A50010-Y3-C150-2-7619 153
7.6.4.4 Rule
Action
To specify a rule action (match) for the packets matching configured classifying patterns,
use the following command.
Command Mode
Description
match deny
Denies a packet.
match permit
Admin-rule
Permits a packet.
To delete a specified rule action (match), use the following command.
Command Mode
Description
no match deny
no match permit
Admin-rule
Deletes a specified rule action.
To specify a rule action (no-match) for the packets not matching configured classifying
patterns, use the following command.
Command Mode
Description
no-match deny
Denies a packet.
no-match permit
Admin-rule
Permits a packet.
To delete a specified rule action (no-match), use the following command.
Command Mode
Description
no no-match deny
no no-match permit
Admin-rule
Deletes a specified rule action.
7.6.4.5 Applying
Rule
After configuring rule using the above commands, apply it to the system with the following
command. If you do not apply a rule to the system, all specified rules will be lost.
To save and apply an admin access rule, use the following command.
Command Mode
Description
apply
Admin-rule
Applies an admin access rule to the system.
1. The switch performs a detailed plausibility check and rejects the rule if the
configuration is incomplete, contains bad or unsupported values or conflicts to other
rules. In this case, the switch informs about the reason and the operator may correct
the
values
2. The switch may reject a rule with the message “% Already exist rule” allthough the
name will not be listed by command, show rule. Unfortunately, the entered name in
this case interferes with the name of an internally managed rule.
Remedy: Select another name for the rule (e.g. add a prefix).
3. All previously entered values remain valid after successful (or unsuccessful)
i