Command Manual - QoS/ACL
Quidway S6500 Series Ethernet Switches Chapter 1 ACL Command
Huawei Technologies Proprietary
1-15
 Note:
Take the following into consideration when configuring the offset parameter:
(1) The packets processed by the switch have VLAN tags. One VLAN tag occupies 4
bytes.
(2) If VLAN VPN is disabled, the packets processed by the switch have 4 bytes of VLAN
tag.
(3) If VLAN VPN is enabled, a 4 bytes of VLAN tag is added to the packets that the
switch receives. However, the result is slightly different for type A and non type A cards:
z For type A card: If the received packets have no VLAN tag, each packet will have
one VLAN tag; if the received packets have one VLAN tag already, each will have
two VLAN tags including the original one.
z For non type A card: The packets will have two VALN tags no matter the received
packets have VLAN tag or not.
Description
Using the rule command, you can add a subrule to the ACL. Using the undo rule
command, you can cancel a subrule of the ACL.
You can define several subrules for an ACL. If you have input parameters when you are
using the undo rule command, the system will only cancel the corresponding content
of the parameters in the subrule.
For the related configuration, see acl.
Example
# Add a subrule to an advanced ACL:
[Quidway-acl-adv-3000] rule 1 permit tcp established source 1.1.1.1 0 destination
2.2.2.2 0
# Add a subrule to a basic ACL:
[Quidway-acl-basic-2000] rule 1 permit source 1.1.1.1 0 fragment
# Add a subrule to a Layer 2 ACL:
[Quidway-acl-link-4000] rule 1 permit ingress 1 egress any
# Add a rule to a user-defined ACL.
[Quidway-acl-user-5000] rule 1 permit 88 ff 18
To Next Page
Loading...
