Operation Manual – ACL
Quidway S3900 Series Ethernet Switches-Release 1510 Chapter 1 ACL Configuration
Huawei Technologies Proprietary
1-16
Apply all the rules in a Link type ACL
separately
link-group acl-number
Apply one rule in a Link type ACL
separately
link-group acl-number rule rule
Apply all the rules in a user-defined ACL
separately
user-group acl-number
Apply one rule in a user-defined ACL
separately
user-group acl-number rule rule
Apply one rule in an IP type ACL and one
rule in a Link type ACL simultaneously
ip-group acl-number rule rule
link-group acl-number rule rule
Note:
For the user-defined ACL rules, if you set to match the fields after the VLAN tag, two
VLAN tags are added for matching of either tagged or untagged packets. For the
packets with their type filed as 0800, the offset value should be 20.
1.7.3 Configuration Example
# Apply ACL 2100 in the inbound direction on GigabitEthernet 1/1/1 to filter packets.
<Quidway> system-view
[Quidway] interface gigabitethernet 1/1/1
[Quidway-GigabitEthernet1/1/1] packet-filter inbound ip-group 2100
1.8 Displaying ACL Configuration
After the above configuration, you can execute the display commands in any view to
view the ACL running information, so as to verify the configuration result.
Table 1-14 Display ACL configuration
Operation Command Description
Display the
configured ACL
rule(s)
display acl { all |
acl-number }
Display a time
range or time
ranges
display time-range { all |
time-name }
Display the
information about
packet filtering
display packet-filter
{ interface interface-type
interface-num | unitid
unit-id }
These commands can be
executed in any view.
To Next Page
Loading...
Need help?
General