Operation Manual
Security ACL Commands
Security ACL Commands
15 – 395
● set security acl on page 15-395
● show security acl on page 15-402
● show security acl info on page 15-404
hit-sample-rate
This command has been renamed in MSS Version 4.1. To configure the hit sample rate, see set
security acl hit-sample-rate on page 15-401.
rollback security acl
Clears changes made to the security ACL edit buffer since it was last saved. The ACL is rolled
back to its state after the last commit security acl command was entered. All uncommitted
ACLs in the edit buffer are cleared.
Syntax
rollback security acl {acl-name | all}
Defaults
None.
Access
Enabled.
History
Examples
The following commands show the edit buffer before a rollback, clear any changes in the
edit buffer to security acl_122, and show the edit buffer after the rollback:
MX# show security acl info all editbuffer
ACL edit-buffer information for all
set security acl ip acl_122 (ACEs 3, add 3, del 0, modified 0)
---------------------------------------------------------
1. permit IP source IP 20.0.1.11 0.0.0.255 destination IP any enable-hits
2. deny IP source IP 20.0.2.11 0.0.0.0 destination IP any
3. deny SRC source IP 192.168.1.234 255.255.255.255 enable-hits
MX# rollback security acl acl_122
MX# show security acl info all editbuffer
ACL edit-buffer information for all
See Also
show security acl on page 15-402
set security acl
In the edit buffer, creates a security access control list (ACL), adds one access control entry (ACE)
to a security ACL, and/or reorders ACEs in the ACL. The ACEs in an ACL filter IP packets by
source IP address, a Layer 4 protocol, or IP, ICMP, TCP, UDP, MAC address packet information.
acl-name Name of an existing security ACL to roll back. ACL names must start with a letter
and are case-insensitive.
all Rolls back all security ACLs in the edit buffer, clearing all uncommitted ACEs.
MSS Version 1.0 Command introduced.
MSS Version 1.1 ACL names changed from case-sensitive to case-insensitive.