display acl
Use display acl to display configuration and match statistics for ACLs.
Syntax
display acl [ ipv6 ] { acl-number | all | name acl-name }
Views
Any view
Predefined user roles
network-admin
network-operator
Parameters
ipv6: Specifies IPv6 ACLs.
acl-number: Specifies an ACL by its number.
2000 to 2999 for basic ACLs.
3000 to 3999 for advanced ACLs.
4000 to 4999 for Ethernet frame header ACLs. You cannot specify an Ethernet frame header ACL if the ipv6 keyword is specified.
all: Displays information about all IPv4 basic, IPv4 advanced, and Ethernet frame header ACLs if you do not specify the ipv6 keyword, or displays information about all IPv6 basic and IPv6 advanced ACLs if you specify the ipv6 keyword.
name acl-name: Specifies an ACL by its name. The acl-name argument is a case-insensitive string of 1 to 63 characters. It must start with an English letter.
Usage guidelines
This command displays ACL rules in config or depth-first order, whichever is configured.
Examples
# Display configuration and match statistics for IPv4 basic ACL 2001.
<Sysname> display acl 2001 Basic ACL 2001, named flow, 1 rule, match-order is auto, This is an IPv4 basic ACL. ACL's step is 5 rule 5 permit source 1.1.1.1 0 rule 5 comment This rule is used on GigabitEthernet 1/0/1.
Table 1: Command output
Field | Description |
|---|---|
Basic ACL 2001 | Category and number of the ACL. The following field information is about IPv4 basic ACL 2000. |
named flow | The name of the ACL is flow. If the ACL is not named, this field displays -none-. |
1 rule | The ACL contains one rule. |
match-order is auto | The match order for the ACL is auto, which sorts ACL rules in depth-first order. This field is not present when the match order is config. |
This is an IPv4 basic ACL. | Description of this ACL. |
ACL's step is 5 | The rule numbering step is 5. |
rule 5 permit source 1.1.1.1 0 | Content of rule 5. |
rule 5 comment This rule is used on GigabitEthernet 1/0/1. | Comment of ACL rule 5. |