Fortinet black logo

CLI Reference

router access-list

Configure access lists.

  config router access-list
      Description: Configure access lists.
      edit <name>
          set comments {string}
          config rule
              Description: Rule.
              edit <id>
                  set action [permit|deny]
                  set prefix {user}
                  set wildcard {user}
                  set exact-match [enable|disable]
                  set flags {integer}
              next
          end
      next
  end

config router access-list

Parameter Name Description Type Size
comments Comment. string Maximum length: 127

config rule

Parameter Name Description Type Size
action Permit or deny this IP address and netmask prefix.
permit: Permit or allow this IP address and netmask prefix.
deny: Deny this IP address and netmask prefix.
option -
prefix IPv4 prefix to define regular filter criteria, such as "any" or subnets. user Not Specified
wildcard Wildcard to define Cisco-style wildcard filter criteria. user Not Specified
exact-match Enable/disable exact match.
enable: Enable exact match.
disable: Disable exact match.
option -
flags Flags. integer Minimum value: 0 Maximum value: 4294967295

Configure access lists.

  config router access-list
      Description: Configure access lists.
      edit <name>
          set comments {string}
          config rule
              Description: Rule.
              edit <id>
                  set action [permit|deny]
                  set prefix {user}
                  set wildcard {user}
                  set exact-match [enable|disable]
                  set flags {integer}
              next
          end
      next
  end

config router access-list

Parameter Name Description Type Size
comments Comment. string Maximum length: 127

config rule

Parameter Name Description Type Size
action Permit or deny this IP address and netmask prefix.
permit: Permit or allow this IP address and netmask prefix.
deny: Deny this IP address and netmask prefix.
option -
prefix IPv4 prefix to define regular filter criteria, such as "any" or subnets. user Not Specified
wildcard Wildcard to define Cisco-style wildcard filter criteria. user Not Specified
exact-match Enable/disable exact match.
enable: Enable exact match.
disable: Disable exact match.
option -
flags Flags. integer Minimum value: 0 Maximum value: 4294967295