3Com 4200G 12-Port

To Next Page

To Previous Page

1-16

Network diagram

Figure 1-6 Network diagram for applying an ACL to a VLAN

GE1/0/1

PC 1 PC 3

Database server

PC 2

VLAN 10

GE1/0/2

GE1/0/3

192.168.1.2

Configuration procedure

# Define a periodic time range that is active from 8:00 to 18:00 in working days.

<Sysname> system-view

[Sysname] time-range test 8:00 to 18:00 working-day

# Define an ACL to deny packets destined for the database server.

[Sysname] acl number 3000

[Sysname-acl-adv-3000] rule 1 deny ip destination 192.168.1.2 0 time-range test

[Sysname-acl-adv-3000] quit

# Apply ACL 3000 to VLAN 10.

[Sysname] packet-filter vlan 10 inbound ip-group 3000

Main Page

About this Manual3
- Configuration Guide1
- Table of Contents3
- Obtaining Documentation5
- Related Documentation5
- Login6
  - Logging in to an Ethernet Switch8
  - Introduction to the User Interface8
- Logging in through the Console Port11
- Logging in through Telnet23
- Logging in Using a Modem34
- CLI Configuration38
- Logging in through NMS55
  - Introduction55
  - Connection Establishment Using NMS55
- Configuring Source IP Address for Telnet Service Packets56
  - Overview56
  - Displaying Source IP Address Configuration57
- User Control58
Configuration File Management65
- Configuration File Management66
  - Introduction to Configuration File66
  - Configuration Task List67
- Vlan70
VLAN Overview/Vlan Configuration71
- 1 VLAN Overview72
- 2 VLAN Configuration78
Static Routing85
- Introduction86
- Static Routing Configuration86
- Configuring a Static Route88
- Displaying and Maintaining a Routing Table88
- Static Route Configuration Example89
  - Basic Static Route Configuration Example89
Voice VLAN91
- Voice VLAN Configuration92
- Voice VLAN Overview92
- Voice VLAN Configuration98
- Displaying and Maintaining Voice VLAN101
- Voice VLAN Configuration Example102
  - Voice VLAN Configuration Example (Automatic Mode)102
  - Voice VLAN Configuration Example (Manual Mode)104
Gvrp Configuration106
- GVRP Configuration107
- Introduction to GVRP107
- GVRP Configuration110
- Displaying and Maintaining GVRP113
- GVRP Configuration Example113
# Display the VLAN Information Dynamically Registered on Switch E.117
- Combo Port Configuration118
- Ethernet Port Configuration118
- Initially Configuring a Port118
- Port Basic Configuration118
- Configuring Port Auto-Negotiation Speed119
- Enabling Flow Control on a Port120
- Limiting Traffic on Individual Ports120
- Configuring Loopback Detection for an Ethernet Port121
- Duplicating the Configuration of a Port to Other Ports121
- Enabling Loopback Test122
- Link Aggregation122
- Enabling the System to Test Connected Cable123
- Configuring the Interval to Perform Statistical Analysis on Port Traffic124
- Disabling Up/Down Log Output on a Port124
- Configuring a Port Group125
- Displaying and Maintaining Basic Port Configuration126
Link Aggregation Configuration127
- Link Aggregation Configuration128
- Overview128
- Link Aggregation Classification129
- Aggregation Group Categories131
- Link Aggregation Configuration133
- Displaying and Maintaining Link Aggregation Configuration136
- Link Aggregation Configuration Example136
  - Ethernet Port Aggregation Configuration Example136
- Port Isolation139
- Port Isolation Configuration Example141
Port Security Configuration/Port Binding Configuration143
- 1 Port Security Configuration144
- 2 Port Binding Configuration155
Mac Address Table Management157
- MAC Address Table Management158
- Overview158
- Configuring MAC Address Table Management161
- Displaying MAC Address Table Information164
  - Adding a Static MAC Address Entry Manually164
Mstp166
- MSTP Configuration168
- STP Overview168
- MSTP Overview176
- Configuring Root Bridge182
- Configuring Leaf Nodes195
- Performing Mcheck Operation200
- Configuring Guard Functions201
- Configuring Digest Snooping205
  - Introduction205
- Configuring Rapid Transition206
  - Introduction206
  - Configuring Rapid Transition208
- STP Maintenance Configuration209
- Displaying and Maintaining MSTP210
- Enabling Trap Messages Conforming to 802.1D Standard210
- MSTP Configuration Example210
Table of Contents213
- 802.1X Configuration215
- 2 Quick EAD Deployment Configuration237
- 3 HABP Configuration242
- 4 System Guard Configuration244
  - System-Guard Overview244
  - Configuring the System-Guard Feature244
Aaa Configuration246
- Default Chapter248
- 2 AAA Configuration257
- 3 EAD Configuration288
Mac Address Authentication Configuration291
- MAC Address Authentication Configuration292
- MAC Address Authentication Overview292
  - Performing MAC Address Authentication on a RADIUS Server292
  - Performing MAC Address Authentication Locally292
- Configuring Basic MAC Address Authentication Functions293
- Related Concepts293
  - MAC Address Authentication Timers293
  - Quiet MAC Address293
- MAC Address Authentication Enhanced Function Configuration294
  - MAC Address Authentication Enhanced Function Configuration Task List294
  - Configuring a Guest VLAN295
- Displaying and Maintaining MAC Address Authentication Configuration298
- MAC Address Authentication Configuration Examples298
IP Addressing Configuration/Ip Performance Optimization Configuration300
- 1 IP Addressing Configuration301
- 2 IP Performance Optimization Configuration305
Table of Contents309
- Arp Configuration310
- Introduction to ARP310
- Configuring ARP313
- Configuring Gratuitous ARP314
- Displaying and Debugging ARP314
- ARP Configuration Examples315
Dhcp Relay Agent Configuration/Dhcp/Bootp Client Configuration316
- Default Chapter317
- 2 DHCP Relay Agent Configuration321
- 3 DHCP/BOOTP Client Configuration330
Table of Contents333
- Dns Configuration334
- DNS Overview334
  - Static Domain Name Resolution334
  - Dynamic Domain Name Resolution334
- Configuring Domain Name Resolution335
  - Configuring Static Domain Name Resolution335
  - Configuring Dynamic Domain Name Resolution336
- Displaying and Maintaining DNS336
- DNS Configuration Examples337
  - Static Domain Name Resolution Configuration Example337
  - Dynamic Domain Name Resolution Configuration Example338
- Troubleshooting DNS339
Table of Contents340
- ACL Matching Order341
- Ways to Apply an ACL on a Switch342
- ACL Configuration343
- Types of Acls Supported by Switch 4200G Series343
- ACL Assignment348
- Displaying ACL Configuration351
- Example for Upper-Layer Software Referencing Acls352
  - Example for Controlling Telnet Login Users by Source IP352
  - Example for Controlling Web Login Users by Source IP352
- Example for Applying Acls to Hardware353
Table of Contents357
- Overview358
- Qos Features Supported by the Switch 4200G Series359
- Introduction to Qos Features360
- Qos Configuration370
- Qos Configuration Examples382
  - Traffic Policing Configuration Example382
Mirroring384
- Mirroring Configuration385
- Mirroring Overview385
  - Local Port Mirroring385
  - Remote Port Mirroring386
- Mirroring Configuration387
  - Configuring Local Port Mirroring388
  - Configuring Remote Port Mirroring389
- Displaying Port Mirroring392
- Mirroring Configuration Examples392
  - Local Port Mirroring Configuration Example392
  - Remote Port Mirroring Configuration Example393
Stack/Cluster397
- 1 Stack398
- 2 Cluster404
Snmp Configuration/Rmon Configuration430
- 1 SNMP Configuration431
- 2 RMON Configuration439
Table of Contents444
- 1 Multicast Overview446
- 2 IGMP Snooping Configuration458
- 3 Common Multicast Configuration478
Ntp Configuration480
- Introduction to NTP481
- NTP Configuration481
- Configuring NTP Implementation Modes486
- NTP Configuration Task List486
- Configuring Access Control Right490
  - Configuration Prerequisites490
  - Configuration Procedure490
- Configuring NTP Authentication491
  - Configuration Prerequisites491
  - Configuration Procedure492
- Configuring Optional NTP Parameters493
- Configuration Examples495
- Displaying NTP Configuration495
Ssh Configuration503
- SSH Configuration504
- SSH Overview504
- SSH Server and Client507
- Configuring the SSH Server508
- Configuring the SSH Client517
- Displaying and Maintaining SSH Configuration526
- Comparison of SSH Commands with the same Functions527
- SSH Configuration Examples528
File System Management Configuration550
- Directory Operations551
- File System Configuration Tasks551
- File System Management Configuration551
- File Operations552
- Flash Memory Operations553
- Prompt Mode Configuration553
  - File System Configuration Example554
- File Attribute Configuration555
- Introduction to File Attributes555
- Booting with the Startup File556
- Configuring File Attributes556
Ftp and Sftp Configuration/Tftp Configuration558
- 1 FTP and SFTP Configuration559
- 2 TFTP Configuration578
  - Introduction to TFTP578
    - TFTP Configuration: a Switch Operating as a TFTP Client579
    - TFTP Configuration Example580
Information Center583
- Information Center584
  - System Information Format587
- Information Center Configuration590
- Displaying and Maintaining Information Center597
- Information Center Configuration Examples598
Table of Contents603
- 1 Boot ROM and Host Software Loading604
- 2 Basic System Configuration and Debugging619
- 3 Network Connectivity Test622
  - Ping622
  - Tracert622
- 4 Device Management623
Remote-Ping Configuration630
- Remote-Ping Configuration631
- Remote-Ping Configuration634
  - Displaying Remote-Ping Configuration645
- Remote-Ping Configuration Examples645
Poe Profile Configuration662
- Poe Configuration663
- Poe Overview663
  - Introduction to Poe663
  - Poe Features Supported by Switch 4200G663
- Poe Configuration Example669
- Introduction to Poe Profile671
- Poe Profile Configuration671
- Displaying Poe Profile Configuration672
- Poe Profile Configuration Example673
  - Poe Profile Application Example673
Smart Link Configuration/Monitor Link Configuration675
- 1 Smart Link Configuration676
- 2 Monitor Link Configuration684
Ipv6 Configuration/Ipv6 Application Configuration691
- 1 Ipv6 Configuration692
- 2 Ipv6 Application Configuration711

3Com 4200G 12-Port - Page 356

Table of Contents

Related product manuals