User's Manual

Table Of Contents
Configuration Guide of XGS-5240-Series
46-2
46.1.2 Digital Self-defined ACL
Digital self-defined ACL can configure multi-ACL lists and each of them can configu
re multi-rules. The number of the issued lists is according to the type of the card. One
rule can configure value and mask for 16 windows at most. The length of every wind
ow is 2Bytes; the name range of the self-defined ACL list is <1200-1299>.
46.2 Self-defined ACL Configuration
Task list of self-defined ACL configuration:
1. Configure the offset template
2. Configure the digital standard userdefined acl
3. Bind the userdefined acl rule to the port
4. Bind the userdefined acl rule to the vlan
1. Configure the offset template
Command
Explanation
Global Mode
userdefined-access-list standard offset
[window1 <offset>] [window2 <offset>]
[window3 <offset>] [window4 <offset>]
[window5 <offset>] [window6 <offset>]
[window7 <offset>] [window8 <offset>]
no userdefined-access-list standard offs
et [window1] [window2] [window3] [wind
ow4] [window5] [window6] [window7] [w
indow8]
Create a standard self-defined ACL templa
te. If the template exists, the correspondin
g window of the template can be modifie
d; the no command deletes the window of
the standard self-defined ACL template. If
the window is not specified, the standard
self-defined ACL template will be deleted.
2. Configure the digital standard userdefined acl
Command
Explanation
Global Mode
userdefined-access-list standard <num>
{deny | permit} [packet-type ipv4 | ipv6
| l2-eth2 | l2-llc | l2-snap | mpls] [windo
w1 <value> <mask>] [window2 <value>
<mask>] [window3 <value> <mask>] [wi
ndow4 <value> <mask>] [window5 <valu
e> <mask>] [window6 <value> <mask>]
Create a numbered standard self-defined
ACL. If the standard self-defined ACL exis
ts, then a rule will be added to the ACL.
The no command deletes a numbered sta
ndard self-defined ACL.