Manualshelf

Reference Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S6000
121122123124125126127128129130
Access Control Lists (ACL) | 123
The order option works across ACL groups that have been applied on an interface via QoS policy
framework.
The order option takes precedence over the seq sequence-number.
If sequence-number is not configured, then rules with the same order value are ordered
according to their configuration order.
If the sequence-number is configured, then the sequence-number is used as a tie breaker for
rules with the same order.
Related
Commands
Extended IP ACL Commands
When an ACL is created without any rule and then applied to an interface, ACL behavior reflects an
implicit permit.
The following commands configure extended IP ACLs, which in addition to the IP address also
examine the packet’s protocol type.
s platforms (except the S4810) support Ingress IP ACLs only.
The Z9000 support both Ingress and Egress IP ACLs.
deny
deny icmp
deny tcp
deny udp
ip access-list extended
permit
permit tcp
permit udp
resequence access-list
resequence prefix-list ipv4
seq
Note: When ACL logging and byte counters are configured simultaneously, byte counters
may display an incorrect value. Configure packet counters with logging instead.
deny Configure a filter to drop packets.
permit Configure a filter to forward packets.
seq Assign a sequence number to a deny or permit filter in an IP access list while creating the
filter.
Note: See also Commands Common to all ACL Types and Common IP ACL Commands.
S6000