Operation Manual – ACL
H3C S3600 Series Ethernet Switches-Release 1510 Chapter 1
ACL Configuration
1-18
Operation Command Description
Apply an ACL on
the port
packet-filter { inbound | outbound }
acl-rule
Required
You can apply ACLs on a port in different ways, as listed in Table 1-17.
Table 1-17 Ways to apply ACLs on a port
Combination mode The acl-rule argument
Apply all the rules of an ACL that is of IP type
ip-group acl-number
Apply a rule of an ACL that is of IP type
ip-group acl-number rule rule-id
Apply all the rules of an ACL that is of link
type
link-group acl-number
Apply a rule of an ACL that is of link type
link-group acl-number rule rule-id
Apply all the rules of a user-defined ACL
user-group acl-number
Apply a rule of a user-defined ACL
user-group acl-number rule rule-id
Apply a rule of an ACL that is of IP type and a
rule of an ACL that is of link type
ip-group acl-number rule rule-id
link-group acl-number rule rule-id
1.7.3 Configuration Example
# Apply ACL 2100 on GigabitEthernet1/1/1 to filter inbound packets.
<H3C> system-view
[H3C] interface gigabitethernet 1/1/1
[H3C-GigabitEthernet1/1/1] packet-filter inbound ip-group 2100
1.8 Displaying ACL Configuration
After the above configuration, you can execute the display commands in any view to
view the ACL running information, so as to verify the configuration.
To Next Page
Loading...
Need help?
General