acl

This command enters Access Control List mode.

Syntax

Creates or edits a service-specific ACL.: acl name
Edits the ACL for the SSH service.: acl ssh
Edits the ACL for the web management interface.: acl web-mgmt
Edits the ACL for the XML management interface.: acl xml-mgmt
Deletes a service-specific ACL.: no acl name

Parameters

name

Specifies the name of the configuration.

The name can contain a maximum of 128 characters. The following characters are valid:

a through z
A through Z
0 through 9
Underscore (_)
Dash (-)
Period (.)

Note: Names cannot be a single period or two consecutive periods.

ssh

Identifies the SSH service. On XI50z, the dp-admin account cannot edit the ACL.

web-mgmt

Identifies the web management interface. On XI50z, the dp-admin account cannot edit the ACL.

xml-mgmt

Identifies the XML management interface. On XI50z, the dp-admin account cannot edit the ACL.

Guidelines

The acl command enters Access Control List mode. In this mode, you can configure an ACL for a specific service.

An ACL contains one or more clauses. Each clause consists of an IP address range that is defined by an IP address and netmask and a Boolean value (allow or deny). IP addresses are evaluated against each clause in the order in which they are in the list. A candidate address is denied or granted access to the service with the first matching clause. Therefore, the order of clauses is important.

Use the no acl command to delete a service-specific ACL.

Examples

Create the ACL-1 ACL.
```
# acl ACL-1
```
Delete the ACL-1 ACL.
```
# no acl ACL-1
```
Edit the ACL for the SSH service.
```
# acl ssh
```
Edit the ACL for the web management interface.
```
# acl web-mgmt
```
Edit the ACL for the XML management interface.
```
# acl xml-mgmt
```