rule (AACL Rule Set)
Syntax
rule rule-name {
match-direction (input | output | input-output);
term term-name {
from {
application-group-any;
application-groups [ application-group-names ];
application-unknown;
applications [ application-names ];
destination-address address <any-unicast>;
destination-address-range low minimum-value high maximum-value;
destination-prefix-list list-name;
nested-application-unknown;
source-address address <any-unicast>;
source-address-range low minimum-value high maximum-value;
source-prefix-list list-name;
}
then {
(accept | discard);
count (application | application-group | application-group-any | nested-application | none);
forwarding-class class-name;
policer policer-name;
}
}
}
Hierarchy Level
[edit services aacl], [edit services aacl rule-set rule-set-name]
Description
Specify the rule the router uses when applying this service.
Options
rule-name—Identifier
for the collection of terms that constitute this rule.
The remaining statements are explained separately. See CLI Explorer.
Required Privilege Level
interface—To view this statement in the configuration.
interface-control—To add this statement to the configuration.
Release Information
Statement introduced in Junos OS Release 9.5.