Operation Manual – ACL
Quidway S5600 Series Ethernet Switches-Release 1510 Chapter 1
ACL Configuration
Huawei Technologies Proprietary
1-14
Parameter Type Function Description
lsap lsap-code
lsap-wildcard
lsap field
Defines the
lsap field in
the rule
lsap-code: the encapsulation
format of data frames, a 16-bit
hexadecimal number
lsap-wildcard: mask of the
lsap value, a 16-bit
hexadecimal number used to
specify the mask bit
source
{ source-addr
source-mask |
vlan-id }*
Source MAC
address
information
Specifies the
source MAC
address
range in the
rule
source-addr: source MAC
address, in the format of
H-H-H
source-mask: source MAC
address mask, in the format
of H-H-H
vlan-id: source VLAN ID, in
the range of 1 to 4,094
dest dest-addr
dest-mask
Destination
MAC address
information
Specifies the
destination
MAC address
range in the
rule
dest-addr: destination MAC
address, in the format of
H-H-H
dest-mask: destination MAC
address mask, in the format
of H-H-H
cos vlan-pri
Priority
Defines the
802.1p
priority of the
rule
vlan-pri: VLAN priority, in the
range of 0 to 7
time-range
time-name
Time range
information
Specifies the
time range in
which the rule
is active
time-name: specifies the
name of the time range in
which the rule is active; a
string of 1 to 32 characters
type
protocol-type
protocol-mask
Protocol type
of Ethernet
frames
Defines the
protocol type
of Ethernet
frames
protocol-type: protocol type
protocol-mask: protocol type
mask
1.5.3 Configuration Example
# Configure ACL 4000 to deny packets whose 802.1p priority is 3.
<Quidway> system-view
[Quidway] acl number 4000
[Quidway-acl-ethernetframe-4000] rule deny cos 3
[Quidway-acl-ethernetframe-4000] display acl 4000
Ethernet frame ACL 4000, 1 rule
Acl's step is 1
rule 0 deny cos excellent-effort
To Next Page
Loading...
