for
define-tag:
access-control-tag:
the lists are created locally to distributes the different equipment
define-tag: used to name a list and its configuration
access-control-tag: used to define ip or ip group
define-tag: name is use for create rule for example
list1 list2
the name list1 maybe use alone or with list2
for example : list1 use alone
define-tag: "ipfire"
Per client IP
access-control-tag: 127.0.0.1/32 "ipfire"
for example : list1 and list2
define-tag: "lan block"
Per client IP
access-control-tag: 192.168.1.2/32 "lan block"
list1 (lan) allow and list2 (block) blocked together list1 is priority on list2