Redundant Rules

For ExtremeSwitching series switches, eliminate redundant rules (any with the EXACT same match criteria) in the policy file. If two rules have identical match conditions, but different actions, the second rule is rejected by the hardware.

For example, the two following ACL entries are not allowed:

entry DenyNMR {
	if {
		protocol 17;
		destination-port 161;
	} then {
		deny;
		count denyNMR;
	}
}
entry DenyNIC {
	if {
		protocol 17;
		destination-port 161;
	} then {
		deny;
		count denyNIC;
	}
}