Technical Documentation



rule rule-name {match-direction (input | output | input-output);term term-name {from {application-group-any;application-groups [ application-group-names ];applications [ application-names ];destination-address address <any-unicast>;destination-address-range low minimum-value high maximum-value;destination-prefix-list list-name;source-address address <any-unicast>;source-address-range low minimum-value high maximum-value;source-prefix-list list-name;}then {(accept | discard);count (application | application-group | application-group-any | none);forwarding-class class-name;policer policer-name;}}}

Hierarchy Level

[edit services aacl],[edit services aacl rule-set rule-set-name]

Release Information

Statement introduced in JUNOS Release 9.5.


Specify the rule the router uses when applying this service.


rule-name—Identifier for the collection of terms that constitute this rule.

The remaining statements are explained separately.

Usage Guidelines

See Configuring AACL Rules.

Required Privilege Level

interface—To view this statement in the configuration.

interface-control—To add this statement to the configuration.

Published: 2010-04-28