Information Defined in
an ACL
Basic
ACL
Advanced ACL Layer 2
ACL
- IP GRE,
IGMP,
IPinIP,
and
OSPF
TCP UDP ICMP -
ICMP
packet type
and code
No No No No No Yes No
Layer 4
information
Source port
number
No No No Yes Yes No No
Destination
port number
No No No Yes Yes No No
SYN flag
type
No No No Yes No No No
Layer 2
information
Source
MAC
address
No No No No No No Yes
Destination
MAC
address
No No No No No No Yes
Layer 2
protocol
type
No No No No No No Yes
VLAN ID No No No No No No Yes
802.1p
priority
No No No No No No Yes
Other
information
Time range Yes Yes Yes Yes Yes Yes Yes
Other ACL Features Supported by the AR1200-S
The AR1200-S supports the following ACL features:
l Step: The step value makes it possible to add a new rule between existing rules and to
control the matching order of rules.
l Description of an ACL: The description of an ACL describes the function or usage of the
ACL. It is used to differentiate ACLs.
l Description of an ACL rule: The description of an ACL rule describes the function or usage
of the ACL rule. It is used to differentiate ACL rules.
l Time range: A time range defines the period during which ACL rules take effect. Some
services or functions that reference ACLs need to be started during a specified period of
Huawei AR1200-S Series Enterprise Routers
Configuration Guide - Security 10 ACL Configuration
Issue 02 (2012-03-30) Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
187
To Next Page
Loading...
