display portal acl
Syntax
display portal acl { all | dynamic | static } interface interface-type interface-number [ | { begin | exclude | include } regular-expression ]
View
Any view
Default level
1: Monitor level
Parameters
all: Displays all portal access control lists (ACLs), including dynamic and static portal ACLs.
dynamic: Displays dynamic portal ACLs—ACLs generated dynamically after a user passes portal authentication.
static: Displays static portal ACLs—ACLs generated through portal related configuration, such as portal-free rule configuration.
interface interface-type interface-number: Displays the ACLs on the specified interface.
|: Filters command output by specifying a regular expression. For more information about regular expressions, see Fundamentals Configuration Guide.
begin: Displays the first line that matches the specified regular expression and all lines that follow.
exclude: Displays all lines that do not match the specified regular expression.
include: Displays all lines that match the specified regular expression.
regular-expression: Specifies a regular expression, a case-sensitive string of 1 to 256 characters.
Description
Use display portal acl to display the ACLs on a specified interface.
Examples
# Display all ACLs on interface VLAN-interface 2.
<Sysname> display portal acl all interface vlan-interface 2
IPv4 portal ACL rules on Vlan-interface2:
Rule 0
Inbound interface : all
Type : static
Action : permit
Source:
IP : 0.0.0.0
Mask : 0.0.0.0
MAC : 0000-0000-0000
Interface : any
VLAN : 0
Protocol : 0
Destination:
IP : 192.168.1.15
Mask : 255.255.255.255
Rule 1
Inbound interface : all
Type : dynamic
Action : permit
Source:
IP : 8.8.8.8
Mask : 255.255.255.255
MAC : 0015-e9a6-7cfe
Interface : any
VLAN : 2
Protocol : 0
Destination:
IP : 0.0.0.0
Mask : 0.0.0.0
Author ACL:
Number : 3001
Rule 2
Inbound interface : all
Type : static
Action : redirect
Source:
IP : 0.0.0.0
Mask : 0.0.0.0
MAC : 0000-0000-0000
Interface : any
VLAN : 2
Protocol : 6
Destination:
IP : 0.0.0.0
Mask : 0.0.0.0
Rule 3
Inbound interface : all
Type : static
Action : deny
Source:
IP : 0.0.0.0
Mask : 0.0.0.0
MAC : 0000-0000-0000
Interface : any
VLAN : 2
Protocol : 0
Destination:
IP : 0.0.0.0
Mask : 0.0.0.0
IPv6 portal ACL rules on Vlan-interface2:
Rule 0
Inbound interface : all
Type : static
Action : permit
Source:
IP : ::
Prefix length : 0
MAC : 0000-0000-0000
Interface : any
VLAN : 8
Protocol : 0
Destination:
IP : 2::2
Prefix length : 128
Port : any
Rule 1
Inbound interface : all
Type : static
Action : redirect
Source:
IP : ::
Prefix length : 0
MAC : 0000-0000-0000
Interface : any
VLAN : 8
Protocol : 6
Destination:
IP : ::
Prefix length : 0
Port : 80
Table 12: Command output
Field | Description |
|---|---|
Rule | Sequence number of the portal ACL, which is numbered from 0 in ascending order. |
Inbound interface | Interface to which the portal ACL is bound. |
Type | Type of the portal ACL. |
Action | Match action in the portal ACL. |
Protocol | Transport layer protocol number in the portal ACL. |
Source | Source information in the portal ACL. |
IP | Source IP address in the portal ACL. |
Mask | Subnet mask of the source IP address in the portal ACL. |
Prefix length | Source IPv6 address prefix in the portal ACL. |
MAC | Source MAC address in the portal ACL. |
Interface | Source interface in the portal ACL. |
VLAN | Source VLAN in the portal ACL. |
Protocol | Protocol type in the portal ACL. |
Destination | Destination information in the portal ACL. |
IP | Destination IP address in the portal ACL. |
Mask | Subnet mask of the destination IP address in the portal ACL. |
Prefix length | Destination IPv6 address prefix in the portal ACL. |
Author ACL | Authorization ACL information. It is displayed only when the value of the Type field is dynamic. |
Number | Authorization ACL number assigned by the RADIUS server. If the server assigns no ACL, this field displays None. |