Operation Manual - QoS/ACL
Quidway S3500 Series Ethernet Switches Chapter 1 ACL Configuration
Huawei Technologies Proprietary
1-23
Table 1-25 Defining the Layer-2 ACL
Operation Command
Enter Layer-2 ACL view(from
system view)
acl { number acl-number | name acl-name
link } [ match-order { config | auto } ]
Add a sub-item to the ACL(from
Layer-2 ACL view)
rule [ rule-id ] { permit | deny } [ cos vlan-pri ]
[ ingress { { source-vlan-id | source-mac-addr
source-mac-wildcard }* | any } ] [ egress
{ { dest-vlan-id | dest-mac-addr
dest-mac-wildcard }* | any } ] [ tagged |
untagged ] [ time-range name ]
Delete a sub-item from the
ACL(from Layer-2 ACL view)
undo rule rule-id
Delete one ACL or all the
ACL(from system view)
undo acl { number acl-number | name
acl-name | all }
Layer-2 ACL can be identified with numbers ranging from 4000 to 4999.
1.4.4 Activating ACL
The defined ACL can be active after activated globally on the switch. This function is
used to activate the ACL filtering or classify the data transmitted by the hardware of
switch.
You can use the following command to activate the defined ACL.
I. Activating ACL in System View
Perform the following configuration in system view.
Table 1-26 Activating ACL
Operation Command
Activate an
ACL
packet-filter inbound acl-rule interface { interface-list | all }
Deactivate an
ACL
undo packet-filter inbound acl-rule interface { interface-list | all }
II. Activating ACL in Ethernet port view
Perform the following configuration in Ethernet port view.
To Next Page
Loading...
