No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.


CLI-based Configuration Guide - IP Service

AR500, AR510, AR531, AR550, AR1500, and AR2500 V200R010

This document describes the concepts and configuration procedures of IP Service features on the device, and provides the configuration examples.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Configuring ACL Rules

Configuring ACL Rules


  1. Run system-view

    The system view is displayed.

  2. Run acl [ number ] acl-number [ match-order { auto | config } ]

    An ACL with the specified number is created and the ACL view is displayed.

  3. Configure basic or advanced ACLs as required. For details, see Configuring a Basic ACL or Configuring an Advanced ACL in the Huawei AR Series V200R010 Configuration Guide - Security - ACL Configuration.


    Only basic ACLs (2000 to 2999) and advanced ACLs (3000 to 3999) can be used to configure the NAT function.

    1. When permit is used in the ACL rule, the system uses the address pool to translate addresses for the packets of which the source IP address is specified in the ACL rule.

    2. When permit is not used in the ACL rule, the NAT policy referencing the ACL does not take effect. That is, the system searches routes for packets, but does not translate addresses.

    3. If the ACL rule referenced in the command is modified, the modification does not take effect immediately. To make the modification take effect immediately, run the reset nat session command to clear the mapping entry information. You are advised not to modify the ACL rules in use.

Updated: 2019-05-20

Document ID: EDOC1100034231

Views: 80343

Downloads: 51

Average rating:
This Document Applies to these Products
Related Version
Related Documents
Previous Next