Configuring ACLs for the USG2000&5000

The USG2000&5000 series supports configuring ACLs using the CLI.

acl [ number ] acl-number [ vpn-instance vpn-instance-name ] [ match-order { config | auto } ]

undo acl { all | [ number ] acl-number }

The default matching order is config.

An access control list contains a series of rules with permit or deny statements. You need to first create an access control list and then configure its rules.

Example
# Create an ACL numbered 2000.
system-view
[sysname] acl number 2000
[sysname-acl-basic-2000]

Scroll to top