Resources | addressContext | ipAccessControlList | rule
 ruleAccess Control List rule name. Each rule is defined with a precedence that is unique within an Address Context. This precedence value determines the order in which the rules are loaded and executed for each incoming packet. If an incoming packet matches two identical rules, the IP ACL rule with the highest precedence is applied for that incoming packet. |
Configuration
| Parameter | Presence | Type | Default | Description | |
|---|---|---|---|---|---|
  | name | M | string | The name of this access control list rule. | |
| precedence | M | uint32 | The precedence of this access control list rule. | |
| protocol | O | union | any | The protocol to match or "any" to match any protocol. |
| ipInterfaceGroup | O | reference | The name of a IP interface group to match. | |
| ipInterface | O | reference | The name of an IP interface to match. | |
| mgmtIpInterfaceGroup | O | reference | The name of a MGMT IP interface group to match. | |
| mgmtIpInterface | O | reference | The name of a MGMT IP interface to match. | |
| sourceIpAddress | O | ip-address | 0.0.0.0 | The source IP address to match. |
| sourceAddressPrefixLength | O | uint32 | 0 | The length of source IP address prefix which must match. |
| destinationIpAddress | O | ip-address | 0.0.0.0 | The destination IP address prefix to match. |
| destinationAddressPrefixLength | O | uint32 | 0 | The length of destination IP address prefix which must match. |
| sourcePort | O | union | any | The source port to match. |
| destinationPort | O | union | any | The destination port to match. |
| action | O | enumeration | accept | The action to take when this rule is matched. |
| fillRate | O | union | 50 | The policing fill rate (in pkts/sec) set to 50 pkt/sec as default value i.e if not mentioned by operator. |
| bucketSize | O | union | 50 | The policing bucket size (in pkts). Set to 50 pkt if not specified by operator. |
| state | O | enumeration | disabled | Administrative state of the IP access control list rule. |
| aggregatePolicer | O | string | name of aggregate policer associated with. | |
| destTypeIpVersion | O | enumeration | ipV4 | The IP Address version type when specifying the dest IP address using an interface name or SipSigPort index. |
| REST API: GET Example |
|---|
curl -kisu 'admin:secret' -X GET https://{SBX-SERVER}/api/config/addressContext/{name}/ipAccessControlList/rule/{name} |
| REST API: POST Example |
|---|
curl -kisu 'admin:secret' -X POST -H 'Content-Type: application/vnd.yang.data+xml' https://{SBX-SERVER}/api/config/addressContext/{name}/ipAccessControlList --data ' |
| REST API: DELETE Example |
|---|
curl -kisu 'admin:secret' -X DELETE https://{SBX-SERVER}/api/config/addressContext/{name}/ipAccessControlList/rule/{name} |
Overview
Content Tools