XG Series User's Guide Chapter 5 Command Reference
ACL Information Settings
235
5.12.1.3 acl ip
Function Set the definition of the ACL IPv4.
Available Model XG0224 / XG0448 / XG2600
Syntax acl <acl_count> ip <src_addr>/<mask> <dst_addr>/<mask> [<protocol> [any]]
acl <acl_count> ip <src_addr>/<mask> <dst_addr>/<mask> [<protocol> [tos <value>]]
acl <acl_count> ip <src_addr>/<mask> <dst_addr>/<mask> [<protocol> [dscp <value>]]
Options
<acl_count>
ACL definition number
Specify an ACL definition serial number with a decimal value.
<src_addr>/<mask>
Specify the source IP address for ACL and the number of mask bits.
IP address/number of mask bits (or mask value)
Specify a combination of the source IP address for ACL and the number of mask bits.
For the mask value, specify successive 1s following the most significant bit (MSB).
The available description format is as follows:
- IP address/number of mask bits (Example: 192.168.1.1/24)
any
Specify it when all source IP addresses are subject to ACL.
The default is 0.0.0.0/0.
<dst_addr>/<mask>
Specify the destination IP address for ACL and the number of mask bits.
IP address/number of mask bits (or mask value)
Specify a combination of the destination IP address for ACL and the number of mask
bits.
The description format is identical to for <src_addr>/<mask>.
any
Specify it when all destination IP addresses are subject to ACL.
The default is 0.0.0.0/0.
<protocol>
Specify a protocol number for ACL.
Protocol number
Specify the protocol number for ACL with a decimal value from 1 to 255. (Example:
ICMP:1, TCP:6, UDP:17, etc.)
any
Specify it when all protocol numbers are subject to ACL.
The default is "any".
<type>
Specify how to identify QoS for ACL.
tos
Specify it when identifying the ACL target with the TOS value.
dscp
Specify it when identifying the ACL target with the DSCP value.
any
Specify it when identifying the ACL target with all TOS and DSCP values.
<value>
Specify the TOS or DSCP value used to identify the ACL target.