Operation Manual – ACL
Quidway S3900 Series Ethernet Switches-Release 1510 Chapter 1 ACL Configuration
Huawei Technologies Proprietary
1-15
1.6.3 Configuration Example
# Configure ACL 5001.
<Quidway> system-view
[Quidway] acl number 5001
[Quidway-acl-user-5001] rule 25 permit ff 12 5 time-range t1
[Quidway-acl-user-5001] display acl 5001
User defined ACL 5001, 2 rules
Acl's step is 1
rule 3 deny
rule 25 permit ff 12 5 time-range t1 (Inactive)
1.7 Applying ACLs on Ports
By applying ACLs on ports, you can filter outbound or inbound packets on the
corresponding ports.
1.7.1 Configuration Preparation
You need to define an ACL before applying it on a port. For operations to define ACLs,
refer to sections
1.3 “Defining Basic ACLs”, 1.4 “Defining Advanced ACLs”, 1.5
“
Defining Layer 2 ACLs”, and section 1.6 “Defining User-Defined ACLs”.
1.7.2 Configuration Procedure
Table 1-12 Apply an ACL on a port
Operation Command Description
Enter system view
system-view
—
Enter Ethernet port
view
interface interface-type
interface-number
—
Apply an ACL on
the port
packet-filter { inbound |
outbound } acl-rule
Required
You can apply combinations of different types of ACLs on a port. The operations are
listed in
Table 1-13.
Table 1-13 Apply combination of ACLs
Combination mode Form of acl-rule
Apply all the rules in an IP type ACL
separately
ip-group acl-number
Apply one rule in an IP type ACL separately
ip-group acl-number rule rule
To Next Page
Loading...
Need help?
General