Create acl – Allied Telesis AT-S63 User Manual

Chapter 18: Access Control List Commands

290

Section II: Advanced Operations

CREATE ACL

Syntax

create acl=

value

[description=”

string

”]

[action=deny|permit] classifierlist=

value

[portlist=

ports

]

Parameters

acl

Specifies an ID number for the ACL. The number can be
from 0 to 255. Each ACL must have a unique ID number.

description

Specifies a description for the ACL. A description can be up
to 15 alphanumeric characters. Spaces are allowed. If the
description contains spaces, it must be enclosed in double
quotes. Otherwise, the quotes are optional.

action

Specifies the action to be taken by the port when a ingress
packet matches a classifier attached to the ACL. Options
are:

permit

The port accepts the packet.

deny

The port discards the packet, provided that the
packet does not match the classifier of a permit
ACL assigned to the same port. This is the
default action.

classifierlist

Specifies the ID numbers of the classifiers to be assigned
to the ACL. When entering multiple ID numbers, separate
the numbers with a comma (e.g., 4,6,7). The classifiers
must already exist on the switch. The order in which you
specify the classifiers is not important. An ACL must have
at least one classifier.

portlist

Specifies the port where this ACL is to be assigned. You
can assign an ACL to more than one port. When entering
multiple ports, the ports can be listed individually (e.g.,
2,5,7), as a range (e.g., 8-12) or both (e.g., 1-4,6,8).

Description

This command creates an ACL. An ACL is used to filter ingress packets
on a port.