Configure the rule for interface-based acl group.
The indexes of the table are hwAclIfAclNum, hwAclIfSubitem.
|
OID |
Object |
Syntax |
Max Access |
Description |
Implemented Specifications |
|---|---|---|---|---|---|
|
1.3.6.1.4.1.2011.5.1.1.6.1.1 |
hwAclIfAclNum |
Integer32 |
read-only |
The index of interface-based acl group, the index range is (1000..1999 | 42768..76535). |
This object is implemented as defined in the corresponding MIB files. |
|
1.3.6.1.4.1.2011.5.1.1.6.1.2 |
hwAclIfSubitem |
Unsigned32 |
read-only |
The object specifies the number of an ACL rule. If the number specified has been assigned to an ACL rule, the new rule will overwrite the old one, which is equal to editing the old rule. If the number is not assigned, the system will define a rule with the number and insert it to the place corresponding to its number. If no number is specified, the system will define a rule, assign a number to it and add it into the ACL. It will be placed at the end of the ACL when configuration sequence is adopted; otherwise, it will be placed based on the 'Depth-first' principle. When ACL rules are following the 'Depth-first' principle, the number of an ACL rule must be given 0 ,but it will be assigned by step automatically;otherwise,this rule will not be created. |
The actually supported value range is 0-4294967294. |
|
1.3.6.1.4.1.2011.5.1.1.6.1.3 |
hwAclIfAct |
INTEGER{permit(1),deny(2)} |
read-create |
The object indicates the action of an interface-based acl rule. 'deny' means discarding the packets that meet the condition, 'permit' means permitting the packets that meet the condition. |
The actually supported access is read-only. |
|
1.3.6.1.4.1.2011.5.1.1.6.1.4 |
hwAclIfIndex |
Integer32 |
read-create |
The object indicates the index of an interface. It specifies the interface information of the packets.The invalid interface index is 0. |
The actually supported access is read-only. The actually supported value range is 1-4294967294. |
|
1.3.6.1.4.1.2011.5.1.1.6.1.5 |
hwAclIfAny |
INTEGER{true(1),false(2)} |
read-create |
The object indicates whether or not matching any interface. |
The actually supported access is read-only. |
|
1.3.6.1.4.1.2011.5.1.1.6.1.6 |
hwAclIfTimeRangeIndex |
Integer32{(0,256)} |
read-create |
The value of this object identifies the index of the time range during which an ACL rule can be applied. When the current time is in the time range, the rule is valid. The value 0 is invalid, indicating that no time range is specified for the rule. The value ranges from 0 to 256. |
The actually supported access is read-only. |
|
1.3.6.1.4.1.2011.5.1.1.6.1.8 |
hwAclIfEnable |
INTEGER{true(1),false(2)} |
read-only |
The object indicates whether the rule is valid or invalid. |
This object is implemented as defined in the corresponding MIB files. |
|
1.3.6.1.4.1.2011.5.1.1.6.1.9 |
hwAclIfCount |
Counter64 |
read-only |
The object indicates the statistics of matched packets by the rule. |
The actually supported value range is 0-4294967295. |
|
1.3.6.1.4.1.2011.5.1.1.6.1.11 |
hwAclIfRowStatus |
INTEGER{active(1),notInService(2),notReady(3),createAndGo(4),createAndWait(5),destroy(6)} |
read-create |
RowStatus,Now support three state:CreateAndGo,Active,Destroy. |
The actually supported access is read-only. |