No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Configuration Guide - Security

CloudEngine 8800, 7800, 6800, and 5800 V200R005C10

This document describes the configurations of Security, including ACL, local attack defense, MFF, attack defense, traffic suppression and storm control, ARP security, Port security, DHCP snooping, ND snooping, PPPoE+, IPSG, SAVI, separating the management plane from the service plane, security risks.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Increment Between ACLs

Increment Between ACLs

Definition

The increment between ACLs is the difference between ACL rule IDs automatically allocated by the system. For example, if the increment is set to 5, the rule IDs are generated in increments of 5 (beginning with 5), such as 5, 10, 15, and so on.

  • If the increment value is changed, ACL rule IDs are automatically changed accordingly. For example, if you change the ACL increment from 5 to 2, the original rule IDs 5, 10, 15, and 20 will become 2, 4, 6, and 8.

  • The same happens if the increment is restored to the default value (5). For example, ACL rule group 3001 contains four rules with IDs being 2, 4, 6, and 8, and the increment is 2. After the ACL increment restores to the default value, the ACL rule IDs become 5, 10, 15, and 20.

Purpose

The increment value ensures there is a space between ACL rule IDs. This allows you to insert new rules between existing ACL rules and control the matching order of the ACL rules. For example, four rules are configured in the ACL rule group with rule IDs 5, 10, 15, and 20. To insert a new rule between rules 5 and 10 (the first and second rules), you can create rule 6, 7, 8, or 9.

In addition, you do not need to manually specify a rule ID when creating an ACL rule. The system will allocate the ACL rule with a rule ID, which is the sum of the current maximum ID and an increment value. For example, if the current maximum rule ID is 25 and the increment value is 5, the system will allocate the rule ID 30 to the new rule.

Translation
Download
Updated: 2019-04-20

Document ID: EDOC1100074765

Views: 29360

Downloads: 97

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next