Operation Manual – ACL
Quidway S3900 Series Ethernet Switches-Release 1510 Chapter 1 ACL Configuration
Huawei Technologies Proprietary
1-11
1.4.3 Configuration Example
# Configure ACL 3000 to permit ICMP packets to pass.
<Quidway> system-view
[Quidway] acl number 3000
[Quidway-acl-adv-3000] rule 0 permit icmp
[Quidway-acl-adv-3000] display acl 3000
Advanced ACL 3000, 1 rule
Acl's step is 1
rule 0 permit icmp
1.5 Defining Layer 2 ACLs
Layer 2 ACLs define rules based on the Layer 2 information such as the source and
destination MAC address information, VLAN priority and Layer 2 protocol to process
packets.
The value range for Layer 2 ACL numbers is 4,000 to 4,999.
1.5.1 Configuration Preparation
Before configuring an ACL rule containing time range arguments, you need to configure
define the corresponding time ranges. For the configuration of time ranges, refer to
section
1.2 “Configuring Time Ranges”.
The values of the source and destination MAC addresses, VLAN priority and Layer 2
protocol in the rule have been defined.
1.5.2 Configuration Tasks
Table 1-9 Create a Layer 2 ACL rule
Operation Command Description
Enter system view
system-view
—
Create or enter
layer 2 ACL view
acl number acl-number
Required
Define an rule
rule [ rule-id ] { permit |
deny } rule-string
Required
Define the
comment string of
the ACL rule
rule rule-id comment text
Optional
Define the
description
information of the
ACL
description text
Optional
To Next Page
Loading...
Need help?
General