clear policy rule (S-, K-Series)

Use this command to delete one or all policy classification rule entries.

Syntax

clear policy rule {admin-profile | profile-index} all-pid-entries | application | ether | icmptype | ip6dest | ip6source | ipfrag | ipproto | ipdestsocket | ipsourcesocket | iptos | ipttl | ipxclass | ipxdest | ipxsource | ipxdestsocket | ipxsourcesocket | ipxtype | llcDsapSsap | macdest | macsource | tci | port | tcpdestportip | tcpsourceportip | udpdestportip | udpsourceportip | vlantag] [all-traffic-entries | data][mask mask] [port-string port-string]

Parameters

admin-profile | profile-index Deletes an administrative profile rule, or deletes rule(s) associated with a specific profile number. Valid profile-index values are 1 - 1023.
all-pid-entries Deletes all rules associated with the specified policy profile index ID.
application Deletes associated application policy.
ether Deletes associated Ethernet II classification rule.
icmptype Deletes associated ICMP classification rule.
ipdest Deletes associated IP destination classification rule.
ipsource Deletes associated IP source classification rule.
ipfrag Deletes associated IP fragmentation classification rule.
ipproto Deletes associated IP protocol classification rule.
ipdestsocket Deletes associated IP destination with optional post-fixed port classification rule.
ipsourcesocket Deletes associated IP source with optional post-fixed port classification rule.
iptos Deletes associated IP Type of Service classification rule.
ipttl Deletes associated IP Time-to-Live (TTL) classification rule.
ipxclass Deletes associated IPX transmission control classification rule.
ipxdest Deletes associated IPX destination address classification rule.
ipxsource Deletes associated IPX source address classification rule.
ipxdestsocket Deletes associated IPX destination socket classification rule.
ipxsourcesocket Deletes associated IPX source socket classification rule.
ipxtype Deletes associated IPX packet type classification rule.
llcDsapSsap Deletes associated DSAP/SSAP classification rule.
macdest Deletes associated MAC destination address classification rule.
macsource Deletes associated MAC source address classification rule.
tci Deletes associated Tag Control Information classification rule.
port Deletes associated port-string classification rule.
tcpdestport Deletes associated TCP destination port classification rule.
tcpdestportip Deletes associated TCP destination port classification rule with optional post-fix IP address.
tcpsourceportip Deletes associated TCP source port classification rule with optional post-fix IP address.
udpdestportip Deletes associated UDP destination port classification rule with optional post-fix IP address.
udpsourceportip Deletes associated UDP source port classification rule with optional post-fix IP address.
vlantag Deletes associated VLAN tag classification rule.
all-traffic-entries | data (Optional) Deletes all entries associated with this traffic rule or a specific data value entry. Refer to Valid Values for Policy Classification Rules for valid values for each classification type.
mask mask (Optional) Deletes associated data mask. Refer to Valid Values for Policy Classification Rules for valid values for each classification type and data value.
port-string port-string (Optional) Deletes specified rule entries for the specified ingress port.

Defaults

When applicable, data, mask, and port-string must be specified for individual rules to be cleared.

Mode

All command modes.

Example

This example shows how to delete all classification rule entries associated with policy profile 1 from all ports:

System(rw)->clear policy rule 1 all-pid-entries