The following are some example ACL rules:
entry etherType1 { if { ethernet-source-address 00:a1:f1:00:00:01; } then { permit; count etherType1; } } entry denyall { if { source-address 10.21.1.1/32; } then { deny; } } entry allowall { if { source-address 11.1.1.1/32; source-address 12.1.0.0/16; } then { allow; } } entry destIp { if { destination-address 192.20.1.0/24; protocol UDP; } then { deny; count destIp; } } entry denyAll { if { } then { deny; count denyAll; } }