The invention relates to the technical field of communications and networks, and provides a remote
access control list generation and data
packet processing method for a CM, for configuring a CM at an
interface layer. The method comprises the following steps: writing an ACL command and adding the ACL command into a TLV43 field of a CM configuration file; the CM downloading the CM configuration file from a TFTP
server and analyzing the CM configuration file, and then storing the ACL command obtained through analysis in a
queue buffer zone; and when a CM interface receives or sends a data packet, obtaining the ACL command in the
queue buffer zone, matching the ACL command with header information of the data packet, and according to a matching result,
processing the data packet. According to the technical scheme provided by the invention, the
network security can be ensured, the
processing efficiency of CM equipment for the data packet is improved, the
network performance is improved, far-end flexible configuration of the CM equipment can also be realized, and the onsite maintenance cost of the CM equipment is decreased.