In this section:

Related articles:

Viewing Ip ACL Rules Using CLI


Note

The Bucket Size value is insignificant if the Fill Rate value is unlimited.

  • The Fill Rate is the maximum rate you expect for the traffic to pass the policer.
  • The Bucket Size is the number of additional packets allowed to pass in a given period if available packets are in the bucket. The credit balance is consumed before the packets are discarded.

If the ACL rules with action = discard, the Fill Rate and the Bucket Size values are irrelevant, and the packets are dropped based on the Type, IP address, or Port.

The Fill Rate and the Bucket Size parameters do not play any role since the policer portion of an ACL is only applicable for the "accept" action and is ignored with the "discard" action since all the packets are already discarded by the criteria.

Use following commands to view Ip ACL Rule details for default address context:

CLIPurpose
show configuration addressContext default ipAccessControlList
show addressContext default ipAccessControlList
List of existing ACLs
show table addressContext default ipAccessControlList rule
List of ACL rules in table format
show table addressContext default ipAccessControlList ipAclRulesByPrecedence
List of ACL rules by precedence in table format

Viewing an Existing Ip ACL Rule using EMA

To view an existing Ip ACL Rule, perform the following:

  1. On SBC main screen, navigate to All > Address Context > Ip Access Control List > Rule.
  2. Select the required Address Context from the Address Context drop-down menu.

  3. The Rule window is displayed.
    Figure 1: Rule


Viewing Ip ACL Rules by Precedence using EMA 

To view Ip ACL Rules by precedence, perform the following:

  1. On SBC main screen, navigate to Monitoring > Security > IP Access Control List > Ip Acl Rules By Precedence.
  2. Select the required Address Context from the Address Context drop-down

  3. The Ip Acl Rule By Precedence window is displayed.
    Figure 2: Ip Acl Rule by Precedence


  • No labels