Class ipv4acl:ACE (CONCRETE)

Class ID:9522
Class Label: IPv4 access-list entry
Encrypted: false - Exportable: true - Persistent: true - Configurable: true - Subject to Quota: Disabled
Write Access: [admin]
Read Access: [admin]
Creatable/Deletable: yes (see Container Mos for details)
Semantic Scope: Fabric
Semantic Scope Evaluation Rule: Parent
Monitoring Policy Source: Parent
Monitoring Flags : [ IsObservable: false, HasStats: false, HasFaults: false, HasHealth: false, HasEventRules: false ]


Naming Rules
RN FORMAT: seq-{seqNum}

    [1] PREFIX=seq- PROPERTY = seqNum


[0] topology/pod-{id}/node-{id}/sys/acl/ipv4/name-{name}/seq-{seqNum}

[1] sys/acl/ipv4/name-{name}/seq-{seqNum}



Super Mo: acl:L3ACE,
Container Mos: ipv4acl:ACL (deletable:yes),

Containers Hierarchies
[V] top:Root  This class represents the root element in the object hierarchy. All managed objects in the system are descendants of the Root element.
[V] fabric:Topology The root for IFC topology.
[V] fabric:Pod A pod.
[V] fabric:Node The root node for the APIC.
[V] top:System The APIC uses a policy model to combine data into a health score. Health scores can be aggregated for a variety of areas such as for the infrastructure, applications, or services. The category health score is calculated using a Lp -Norm formula. The health score penalty equals 100 minus the health score. The health score penalty represents the overall health score penalties of a set of MOs that belong to a given category and are children or direc...
[V] acl:Entity  Holds ACL control plane configuration
[V] ipv4acl:AF  IPv4
[V] ipv4acl:ACL  IPv4 ACL
[V] ipv4acl:ACE  IPv4 ACE
[V] top:Root  This class represents the root element in the object hierarchy. All managed objects in the system are descendants of the Root element.
[V] top:System The APIC uses a policy model to combine data into a health score. Health scores can be aggregated for a variety of areas such as for the infrastructure, applications, or services. The category health score is calculated using a Lp -Norm formula. The health score penalty equals 100 minus the health score. The health score penalty represents the overall health score penalties of a set of MOs that belong to a given category and are children or direc...
[V] acl:Entity  Holds ACL control plane configuration
[V] ipv4acl:AF  IPv4
[V] ipv4acl:ACL  IPv4 ACL
[V] ipv4acl:ACE  IPv4 ACE

Contained Hierarchy
[V] ipv4acl:ACE  IPv4 ACE

[V] acl:L3ACE  L3 ACE MO
[V] ipv4acl:ACE  IPv4 ACE




Properties Summary
Defined in: ipv4acl:ACE
dstPrefix  (ipv4acl:ACE:dstPrefix)
           Destination Prefix
dstPrefixMask  (ipv4acl:ACE:dstPrefixMask)
           Destination Prefix Mask
protocol  (ipv4acl:ACE:protocol)
           The transfer protocol to be used for data export.
protocolMask  (ipv4acl:ACE:protocolMask)
           Protocol Mask
seqNum  (ipv4acl:ACE:seqNum)
           An ISIS link-state packet sequence number.
srcPrefix  (ipv4acl:ACE:srcPrefix)
           Source Prefix
srcPrefixMask  (ipv4acl:ACE:srcPrefixMask)
           Source Prefix Mask
Defined in: acl:L3ACE
action  (acl:L3ACE:action)
           The action required when the condition is met.
dstPort1  (acl:L3ACE:dstPort1)
           Destination Port
dstPortMask  (acl:L3ACE:dstPortMask)
           Destination Port Mask
srcPort1  (acl:L3ACE:srcPort1)
           Source Port
srcPortMask  (acl:L3ACE:srcPortMask)
           Source Port Mask
vrfName  (acl:L3ACE:vrfName)
           The VRF name. This name can be up to 64 alphanumeric characters.
Defined in: mo:TopProps
childAction  (mo:TopProps:childAction)
           Delete or ignore. For internal use only.
reference:BinRef dn  (mo:TopProps:dn)
           A tag or metadata is a non-hierarchical keyword or term assigned to the fabric module.
reference:BinRN rn  (mo:TopProps:rn)
           Identifies an object from its siblings within the context of its parent object. The distinguished name contains a sequence of relative names.
status  (mo:TopProps:status)
           The upgrade status. This property is for internal use only.
Defined in: mo:Resolvable
lcOwn  (mo:Resolvable:lcOwn)
           A value that indicates how this object was created. For internal use only.
Defined in: mo:Ownable
scalar:Uint16 uid  (mo:Ownable:uid)
           A unique identifier for this object.
Defined in: mo:Modifiable
modTs  (mo:Modifiable:modTs)
           The time when this object was last modified.
Properties Detail


Type: acl:ActionType
Primitive Type: scalar:Enum8

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
The action required when the condition is met.
invalid 0 invalid NO COMMENTS
permit 1 permit NO COMMENTS
deny 2 deny NO COMMENTS
copy 3 copy NO COMMENTS
divert 4 divert NO COMMENTS
redirect 5 redirect NO COMMENTS
DEFAULT invalid(0) invalid NO COMMENTS


Type: mo:ModificationChildAction
Primitive Type: scalar:Bitmask32

Units: null
Encrypted: false
Access: implicit
Category: TopLevelChildAction
Delete or ignore. For internal use only.
deleteAll 16384u deleteAll NO COMMENTS
ignore 4096u ignore NO COMMENTS
deleteNonPresent 8192u deleteNonPresent NO COMMENTS
DEFAULT 0 --- This type is used to


Type: reference:BinRef

Units: null
Encrypted: false
Access: implicit
Category: TopLevelDn
A tag or metadata is a non-hierarchical keyword or term assigned to the fabric module.


Type: acl:PortNumber
Primitive Type: scalar:Uint16

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
Destination Port
echo 7 echo NO COMMENTS
discard 9 discard NO COMMENTS
daytime 13 daytime NO COMMENTS
chargen 19 chargen NO COMMENTS
ftp-data 20 ftp-data NO COMMENTS
ftp 21 ftp NO COMMENTS
telnet 23 telnet NO COMMENTS
smtp 25 smtp NO COMMENTS
time 37 time NO COMMENTS
nameserver 42 nameserver NO COMMENTS
whois 43 whois NO COMMENTS
tacacs 49 tacacs NO COMMENTS
domain 53 domain NO COMMENTS
bootps 67 bootps NO COMMENTS
bootpc 68 bootpc NO COMMENTS
tftp 69 tftp NO COMMENTS
gopher 70 gopher NO COMMENTS
finger 79 finger NO COMMENTS
www 80 www NO COMMENTS
hostname 101 hostname NO COMMENTS
pop2 109 pop2 NO COMMENTS
pop3 110 pop3 NO COMMENTS
sunrpc 111 sunrpc NO COMMENTS
ident 113 ident NO COMMENTS
nntp 119 nntp NO COMMENTS
ntp 123 ntp NO COMMENTS
netbios-ns 137 netbios-ns NO COMMENTS
netbios-dgm 138 netbios-dgm NO COMMENTS
netbios-ss 139 netbios-ss NO COMMENTS
snmp 161 snmp NO COMMENTS
snmptrap 162 snmptrap NO COMMENTS
xdmcp 177 xdmcp NO COMMENTS
bgp 179 bgp NO COMMENTS
irc 194 irc NO COMMENTS
dnsix 195 dnsix NO COMMENTS
mobile-ip 434 mobile-ip NO COMMENTS
pim-auto-rp 496 pim-auto-rp NO COMMENTS
isakmp 500 isakmp NO COMMENTS
biff 512 biff NO COMMENTS
exec 512 exec NO COMMENTS
login 513 login NO COMMENTS
who 513 who NO COMMENTS
cmd 514 cmd NO COMMENTS
syslog 514 syslog NO COMMENTS
lpd 515 lpd NO COMMENTS
talk 517 talk NO COMMENTS
rip 520 rip NO COMMENTS
uucp 540 uucp NO COMMENTS
klogin 543 klogin NO COMMENTS
kshell 544 kshell NO COMMENTS
drip 3949 drip NO COMMENTS
non500-isakmp 4500 non500-isakmp NO COMMENTS
defaultValue 0 --- NO COMMENTS


Type: acl:PortNumber
Primitive Type: scalar:Uint16

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
Destination Port Mask
echo 7 echo NO COMMENTS
discard 9 discard NO COMMENTS
daytime 13 daytime NO COMMENTS
chargen 19 chargen NO COMMENTS
ftp-data 20 ftp-data NO COMMENTS
ftp 21 ftp NO COMMENTS
telnet 23 telnet NO COMMENTS
smtp 25 smtp NO COMMENTS
time 37 time NO COMMENTS
nameserver 42 nameserver NO COMMENTS
whois 43 whois NO COMMENTS
tacacs 49 tacacs NO COMMENTS
domain 53 domain NO COMMENTS
bootps 67 bootps NO COMMENTS
bootpc 68 bootpc NO COMMENTS
tftp 69 tftp NO COMMENTS
gopher 70 gopher NO COMMENTS
finger 79 finger NO COMMENTS
www 80 www NO COMMENTS
hostname 101 hostname NO COMMENTS
pop2 109 pop2 NO COMMENTS
pop3 110 pop3 NO COMMENTS
sunrpc 111 sunrpc NO COMMENTS
ident 113 ident NO COMMENTS
nntp 119 nntp NO COMMENTS
ntp 123 ntp NO COMMENTS
netbios-ns 137 netbios-ns NO COMMENTS
netbios-dgm 138 netbios-dgm NO COMMENTS
netbios-ss 139 netbios-ss NO COMMENTS
snmp 161 snmp NO COMMENTS
snmptrap 162 snmptrap NO COMMENTS
xdmcp 177 xdmcp NO COMMENTS
bgp 179 bgp NO COMMENTS
irc 194 irc NO COMMENTS
dnsix 195 dnsix NO COMMENTS
mobile-ip 434 mobile-ip NO COMMENTS
pim-auto-rp 496 pim-auto-rp NO COMMENTS
isakmp 500 isakmp NO COMMENTS
biff 512 biff NO COMMENTS
exec 512 exec NO COMMENTS
login 513 login NO COMMENTS
who 513 who NO COMMENTS
cmd 514 cmd NO COMMENTS
syslog 514 syslog NO COMMENTS
lpd 515 lpd NO COMMENTS
talk 517 talk NO COMMENTS
rip 520 rip NO COMMENTS
uucp 540 uucp NO COMMENTS
klogin 543 klogin NO COMMENTS
kshell 544 kshell NO COMMENTS
drip 3949 drip NO COMMENTS
non500-isakmp 4500 non500-isakmp NO COMMENTS
defaultValue 0 --- NO COMMENTS


Type: ipv4acl:IPv4Prefix
Primitive Type: address:IPv4

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
Destination Prefix


Type: ipv4acl:IPv4PrefixMask
Primitive Type: address:IPv4

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
Destination Prefix Mask


Type: mo:Owner
Primitive Type: scalar:Enum8

Units: null
Encrypted: false
Access: implicit
Category: TopLevelRegular
A value that indicates how this object was created. For internal use only.
local 0 Local NO COMMENTS
policy 1 Policy NO COMMENTS
replica 2 Replica NO COMMENTS
resolveOnBehalf 3 ResolvedOnBehalf NO COMMENTS
implicit 4 Implicit NO COMMENTS


Type: mo:TStamp
Primitive Type: scalar:Date

Units: null
Encrypted: false
Access: implicit
Category: TopLevelRegular
The time when this object was last modified.
never 0ull never NO COMMENTS
DEFAULT never(0ull) never NO COMMENTS


Type: ipv4acl:Protocol
Primitive Type: scalar:UByte

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
The transfer protocol to be used for data export.
ip 0 ipv4 NO COMMENTS
icmp 1 icmp NO COMMENTS
igmp 2 igmp NO COMMENTS
tcp 6 tcp NO COMMENTS
udp 17 udp NO COMMENTS
gre 47 gre NO COMMENTS
esp 50 esp NO COMMENTS
ahp 51 ahp NO COMMENTS
eigrp 88 eigrp NO COMMENTS
ospf 89 ospf NO COMMENTS
nos 94 nos NO COMMENTS
pim 103 pim NO COMMENTS
pcp 108 pcp NO COMMENTS
defaultValue 255 --- NO COMMENTS


Type: ipv4acl:Protocol
Primitive Type: scalar:UByte

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
Protocol Mask
ip 0 ipv4 NO COMMENTS
icmp 1 icmp NO COMMENTS
igmp 2 igmp NO COMMENTS
tcp 6 tcp NO COMMENTS
udp 17 udp NO COMMENTS
gre 47 gre NO COMMENTS
esp 50 esp NO COMMENTS
ahp 51 ahp NO COMMENTS
eigrp 88 eigrp NO COMMENTS
ospf 89 ospf NO COMMENTS
nos 94 nos NO COMMENTS
pim 103 pim NO COMMENTS
pcp 108 pcp NO COMMENTS
defaultValue 255 --- NO COMMENTS


Type: reference:BinRN

Units: null
Encrypted: false
Access: implicit
Category: TopLevelRn
Identifies an object from its siblings within the context of its parent object. The distinguished name contains a sequence of relative names.


Type: acl:SequenceNumber
Primitive Type: scalar:Uint32

Units: null Encrypted: false Naming Property -- [NAMING RULES] Access: naming Category: TopLevelRegular Property Validators: Range: min: (long)0l max: (long)4294967295l
An ISIS link-state packet sequence number.


Type: acl:PortNumber
Primitive Type: scalar:Uint16

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
Source Port
echo 7 echo NO COMMENTS
discard 9 discard NO COMMENTS
daytime 13 daytime NO COMMENTS
chargen 19 chargen NO COMMENTS
ftp-data 20 ftp-data NO COMMENTS
ftp 21 ftp NO COMMENTS
telnet 23 telnet NO COMMENTS
smtp 25 smtp NO COMMENTS
time 37 time NO COMMENTS
nameserver 42 nameserver NO COMMENTS
whois 43 whois NO COMMENTS
tacacs 49 tacacs NO COMMENTS
domain 53 domain NO COMMENTS
bootps 67 bootps NO COMMENTS
bootpc 68 bootpc NO COMMENTS
tftp 69 tftp NO COMMENTS
gopher 70 gopher NO COMMENTS
finger 79 finger NO COMMENTS
www 80 www NO COMMENTS
hostname 101 hostname NO COMMENTS
pop2 109 pop2 NO COMMENTS
pop3 110 pop3 NO COMMENTS
sunrpc 111 sunrpc NO COMMENTS
ident 113 ident NO COMMENTS
nntp 119 nntp NO COMMENTS
ntp 123 ntp NO COMMENTS
netbios-ns 137 netbios-ns NO COMMENTS
netbios-dgm 138 netbios-dgm NO COMMENTS
netbios-ss 139 netbios-ss NO COMMENTS
snmp 161 snmp NO COMMENTS
snmptrap 162 snmptrap NO COMMENTS
xdmcp 177 xdmcp NO COMMENTS
bgp 179 bgp NO COMMENTS
irc 194 irc NO COMMENTS
dnsix 195 dnsix NO COMMENTS
mobile-ip 434 mobile-ip NO COMMENTS
pim-auto-rp 496 pim-auto-rp NO COMMENTS
isakmp 500 isakmp NO COMMENTS
biff 512 biff NO COMMENTS
exec 512 exec NO COMMENTS
login 513 login NO COMMENTS
who 513 who NO COMMENTS
cmd 514 cmd NO COMMENTS
syslog 514 syslog NO COMMENTS
lpd 515 lpd NO COMMENTS
talk 517 talk NO COMMENTS
rip 520 rip NO COMMENTS
uucp 540 uucp NO COMMENTS
klogin 543 klogin NO COMMENTS
kshell 544 kshell NO COMMENTS
drip 3949 drip NO COMMENTS
non500-isakmp 4500 non500-isakmp NO COMMENTS
defaultValue 0 --- NO COMMENTS


Type: acl:PortNumber
Primitive Type: scalar:Uint16

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
Source Port Mask
echo 7 echo NO COMMENTS
discard 9 discard NO COMMENTS
daytime 13 daytime NO COMMENTS
chargen 19 chargen NO COMMENTS
ftp-data 20 ftp-data NO COMMENTS
ftp 21 ftp NO COMMENTS
telnet 23 telnet NO COMMENTS
smtp 25 smtp NO COMMENTS
time 37 time NO COMMENTS
nameserver 42 nameserver NO COMMENTS
whois 43 whois NO COMMENTS
tacacs 49 tacacs NO COMMENTS
domain 53 domain NO COMMENTS
bootps 67 bootps NO COMMENTS
bootpc 68 bootpc NO COMMENTS
tftp 69 tftp NO COMMENTS
gopher 70 gopher NO COMMENTS
finger 79 finger NO COMMENTS
www 80 www NO COMMENTS
hostname 101 hostname NO COMMENTS
pop2 109 pop2 NO COMMENTS
pop3 110 pop3 NO COMMENTS
sunrpc 111 sunrpc NO COMMENTS
ident 113 ident NO COMMENTS
nntp 119 nntp NO COMMENTS
ntp 123 ntp NO COMMENTS
netbios-ns 137 netbios-ns NO COMMENTS
netbios-dgm 138 netbios-dgm NO COMMENTS
netbios-ss 139 netbios-ss NO COMMENTS
snmp 161 snmp NO COMMENTS
snmptrap 162 snmptrap NO COMMENTS
xdmcp 177 xdmcp NO COMMENTS
bgp 179 bgp NO COMMENTS
irc 194 irc NO COMMENTS
dnsix 195 dnsix NO COMMENTS
mobile-ip 434 mobile-ip NO COMMENTS
pim-auto-rp 496 pim-auto-rp NO COMMENTS
isakmp 500 isakmp NO COMMENTS
biff 512 biff NO COMMENTS
exec 512 exec NO COMMENTS
login 513 login NO COMMENTS
who 513 who NO COMMENTS
cmd 514 cmd NO COMMENTS
syslog 514 syslog NO COMMENTS
lpd 515 lpd NO COMMENTS
talk 517 talk NO COMMENTS
rip 520 rip NO COMMENTS
uucp 540 uucp NO COMMENTS
klogin 543 klogin NO COMMENTS
kshell 544 kshell NO COMMENTS
drip 3949 drip NO COMMENTS
non500-isakmp 4500 non500-isakmp NO COMMENTS
defaultValue 0 --- NO COMMENTS


Type: ipv4acl:IPv4Prefix
Primitive Type: address:IPv4

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
Source Prefix


Type: ipv4acl:IPv4PrefixMask
Primitive Type: address:IPv4

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
Source Prefix Mask


Type: mo:ModificationStatus
Primitive Type: scalar:Bitmask32

Units: null
Encrypted: false
Access: implicit
Category: TopLevelStatus
The upgrade status. This property is for internal use only.
created 2u created In a setter method: specifies that an object should be created. An error is returned if the object already exists.
In the return value of a setter method: indicates that an object has been created.
modified 4u modified In a setter method: specifies that an object should be modified
In the return value of a setter method: indicates that an object has been modified.
deleted 8u deleted In a setter method: specifies that an object should be deleted.
In the return value of a setter method: indicates that an object has been deleted.
DEFAULT 0 --- This type controls the life cycle of objects passed in the XML API.

When used in a setter method (such as configConfMo), the ModificationStatus specifies whether an object should be created, modified, deleted or removed.
In the return value of a setter method, the ModificationStatus indicates the actual operation that was performed. For example, the ModificationStatus is set to "created" if the object was created. The ModificationStatus is not set if the object was neither created, modified, deleted or removed.

When invoking a setter method, the ModificationStatus is optional:
If a setter method such as configConfMo is invoked and the ModificationStatus is not set, the system automatically determines if the object should be created or modified.


Type: scalar:Uint16

Units: null
Encrypted: false
Access: implicit
Category: TopLevelRegular
A unique identifier for this object.


Type: acl:VrfNameT
Primitive Type: string:Basic

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
Property Validators:
    Range:  min: "0"  max: "512"
The VRF name. This name can be up to 64 alphanumeric characters.