Config acl delete, Config acl delete 219, Config acl interface add – Intel BLADE SERVER IXM5414E Manuale d'uso

Command Line Interface Management

219

config acl delete

Use this command to delete an ACL identified by the parameter <aclid> from the system.

Format

config acl delete <aclid>

config acl interface add

Use this command to associate an ACL with an interface and specifies whether it affects inbound or
outbound traffic. The <direction> parameter can have the values of in or out. The <aclid> parameter
specifies the ACL to add.

Format

config acl interface add <port> <direction> <aclid>

config acl interface remove

Use this command to disassociate an ACL from an interface for the specified direction. The
<direction> parameter can have the values of in or out. The <aclid> parameter specifies the ACL to
remove.

Format

config acl interface remove <port> <direction> <aclid>

config acl rule action

Use this command to specify the action for the ACL and rule referenced by the parameters <aclid>
and <rulenum>. The values of permit or deny indicate how this rule is applied.

Format

config acl rule action <aclid> <rulenum> <permit/deny>

config acl rule create

Use this command to create a rule within the ACL referenced by the parameter <aclid>. The rule is
identified by the <rulenum> parameter. An ACL may have up to 10 user-specified rules, whose
<rulenum> ranges from 1 to 10. Rules are created with a default action of deny.

Default

deny

Format

config acl rule create <aclid> <rulenum>

config acl rule delete

Use this command to remove a rule from the ACL referenced by the parameter <aclid>. The rule is
identified by the <rulenum> parameter.

Format

config acl rule delete <aclid> <rulenum>

config acl rule match dstip

Use this command to specify a destination IP address and mask match condition for the ACL rule
referenced by the <aclid> and <rulenum> parameters. The <ipaddr> and <ipmask> parameters are
4-digit dotted-decimal numbers which represent the destination IP address and IP mask,
respectively.

Format

config acl rule match dstip <aclid> <rulenum> <ipaddr> <ipmask>

config acl rule match dstl4port keyword

Use this command to specify a destination layer 4 port match condition for the ACL rule referenced
by the <aclid> and <rulenum> parameters. The <portkey> parameter uses a single keyword notation
and currently has the values of domain, echo, ftp, ftpdata, http, smtp, snmp, Telnet, tftp and www.
Each of these values translates into its equivalent port number, which is used as both the start and
end of a port range.