Operation Manual - QoS/ACL
Quidway S3500 Series Ethernet Switches Chapter 1 ACL Configuration
Huawei Technologies Proprietary
1-16
 Note:
When user defines user-defined ACL, please calculate and set the correct offsets
according to the data frames of SNAP+tag format with the 802.3 standard described
above.
You can use the following commands to define user-defined ACL.
Perform the following configuration in corresponding view.
Table 1-16 Defining the user-defined ACL
Operation Command
Enter user-defined ACL view(from
system view)
acl { number acl-number | name
acl-name user } [ match-order { config
| auto } ]
Add a sub-item to the ACL(from
user-defined ACL view)
rule [ rule-id ] { permit | deny }
{ rule-string rule-mask offset }&<1-8>
[ time-range name ]
Delete a sub-item from the ACL(from
user-defined ACL view)
undo rule rule-id
Delete one ACL or all the ACL(from
system view)
undo acl { number acl-number | name
acl-name | all }
The self-defined ACL are identified with the numbers ranging from 5000 to 5999.
1.3.3 Activating ACL
The defined ACL can be active after activated globally on the switch. This function is
used to activate the ACL filtering or classify the data transmitted by the hardware of
switch.
You can use the following command to activate the defined ACL.
Perform the following configuration in system view.
Table 1-17 Activating ACL
Operation Command
Activate an
ACL
packet-filter { user-group { acl-number | acl-name } [ rule rule ] |
{ ip-group { acl-number | acl-name } [ rule rule ] | link-group
{ acl-number | acl-name } [ rule rule ] }* }
Deactivate an
ACL
undo packet-filter { user-group { acl-number | acl-name } [ rule
rule ] | { ip-group { acl-number | acl-name } [ rule rule ] | link-group
{ acl-number | acl-name } [ rule rule ] }* }
To Next Page
Loading...
Need help?
General
