6-1
6 Traffic Filtering Configuration
When configuring traffic filtering, go to these sections for information you are interested in:
z Traffic Filtering Overview
z Configuring Traffic Filtering
z Traffic Filtering Configuration Example
Traffic Filtering Overview
You can filter in or filter out a class of traffic by associating the class with a traffic filtering action. For
example, you can filter packets sourced from a specific IP address according to network status. By
using ACL rules configured with a time range for traffic classification, you can implement time-based
traffic filtering.
Alternatively, you can implement traffic filtering on a port by directly applying an ACL on the port. For the
configuration procedure, refer to ACL Configuration.
Configuring Traffic Filtering
Follow these steps to configure traffic filtering:
To do… Use the command… Remarks
Enter system view
system-view
—
Create a class and enter
class view
traffic classifier tcl-name [ operator
{ and | or } ]
—
Configure the match criteria
if-match match-criteria
—
Exit class view
quit
—
Create a behavior and enter
behavior view
traffic behavior behavior-name
—
Configure the traffic filtering
action
filter { deny | permit }
Required
z deny: Drops packets.
z permit: Permits packets
to pass through.
Exit behavior view
quit
—
Create a policy and enter
policy view
qos policy policy-name
—
To Next Page
Loading...
