The ip address command configures an IP address in an ACL IP address pool.
The undo ip address command deletes an IP address from an ACL IP address pool.
By default, no IP address is configured in an ACL IP address pool.
Product |
Support |
|---|---|
S5720-EI, S5720-HI, S5730-HI, S5731-H, S5731-S, S5731S-H, S5731S-S, S5732-H, S6720-EI, S6720-HI, S6720S-EI, S6730-H, S6730S-H, S6730-S, and S6730S-S |
Supported |
S2720-EI, S5720I-SI, S5720-LI, S5735-L, S5735S-L, S5735S-L-M, S5720S-LI, S5720S-SI, S5720-SI, S5735-S, S5735S-S, S5735-S-I, S5730S-EI, S5730-SI, S6720-LI, S6720S-LI, S6720S-SI, and S6720-SI |
Not supported |
ip address ip-address [ mask-length | wildcard | track-nqa admin-name test-name ]
undo ip address ip-address [ mask-length | wildcard | track-nqa admin-name test-name ]
Parameter |
Description |
Value |
|---|---|---|
| ip-address | Specifies the IP address in the ACL IP address pool. |
The value is in dotted decimal notation. |
| mask-length | Specifies the subnet mask. NOTE:
If the ACL IP address pool is invoked by the redirect ip-multihop command, ensure that the subnet mask is 32-bit long. Otherwise, redirection to the next hop will fail. |
The value is an integer that ranges from 0 to 32. |
| wildcard | Specifies the wildcard of the IP address. |
The value is in dotted decimal notation. |
| track-nqa | Specifies an NQA test instance to be associated with the ACL IP address pool. |
- |
| admin-name | Specifies the administrator of the NQA test instance. |
The value is a string of 1 to 32 case-sensitive characters, excluding question marks (?), hyphens (-), and quotation marks ("). |
| test-name | Specifies the name of the NQA test instance. |
The value is a string of 1 to 32 case-sensitive characters, excluding question marks (?), hyphens (-), and quotation marks ("). |
Usage Scenario
After an ACL IP address pool is created, you can run the ip address command to specify an IP address for the ACL IP address pool. The ACL IP address pool can be invoked by the redirect ip-multihop command to redirect packets to the next hop specified in the ACL IP address pool.
Prerequisites
An ACL IP address pool has been created by running the acl ip-pool command.
Precautions
The switch supports a maximum of 12 ACL IP address pools. Each ACL IP address pool supports a maximum of 4 IP addresses.
In the scenario when PBR is used to redirect packets to multiple next hops, if the device has no ARP entry matching the specified next hop IP address, the redirection does not take effect. The device still forwards packets to the original destination until the ARP entry matching the specified next hop IP address is generated on the device. You can run the display acl ip-pool command to check whether the next hop IP address specified in the ACL IP address pool takes effect.
# Specify five IP addresses for the ACL IP address pool named abc.
<HUAWEI> system-view [HUAWEI] acl ip-pool abc [HUAWEI-acl-ip-pool-abc] ip address 192.168.10.1 32 [HUAWEI-acl-ip-pool-abc] ip address 192.168.20.1 32 [HUAWEI-acl-ip-pool-abc] ip address 192.168.30.1 32 [HUAWEI-acl-ip-pool-abc] ip address 192.168.40.1 32 [HUAWEI-acl-ip-pool-abc] ip address 192.168.50.1 32