EasyManua.ls Logo

Zte ZXR10 2928E-PS

Zte ZXR10 2928E-PS
266 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Chapter4ServiceConguration
CommandFunction
zte(cfg)#configegress-aclextendnumber<500-599>
CreatesanextendedegressACL
instanceandconguresit.
zte(egress-extend-acl)#rule<1-500>{permit|deny}<ip-protocol>{<
source-ipaddr><sip-mask>|any}{<destination-ipaddr><dip-mask>|any}[
dsscp<0-63>][fragment]
SetsanextendedegressACLwhich
matchestheprotocoleldofIPv4.
zte(egress-extend-acl)#rule<1-500>{permit|deny}icmp{<
source-ipaddr><sip-mask>|any}{<destination-ipaddr><dip-mask>|any}[
iicmp-ttype<0-254><icmp-code>][dsscp<0-63>][fragment]
SetsanextendedegressACLwhich
matchesICMPpacket.
zte(egress-extend-acl)#rule<1-500>{permit|deny}ip{<source-ipaddr><
sip-mask>|any}{<destination-ipaddr><dip-mask>|any}[dsscp<0-63>][
fragment]
SetsanextendedegressACLwhich
matchesIPpacket.
zte(egress-extend-acl)#rule<1-500>{permit|deny}tcp{<source-ipaddr><
sip-mask>|any}[ssourrce-porrtt<0-65535><sport-mask>]{<
destination-ipaddr><dip-mask>|any}[desstt-porrtt<0-65535><
dport-mask>][establishing|established][dsscp<0-63>][fragment]
SetsanextendedegressACLwhich
matchesTCPpacket.
zte(egress-extend-acl)#rule<1-500>{permit|deny}udp{<
source-ipaddr><sip-mask>|any}[ssourrce-porrtt<0-65535><
sport-mask>]{<destination-ipaddr><dip-mask>|any}[desstt-porrtt<
0-65535><dport-mask>][dsscp<0-63>][fragment]
SetsanextendedegressACLwhich
matchesUDPpacket.
zte(egress-extend-acl)#rule<1-500>{permit|deny}arp{<sender-ipaddr><
sip-mask>|any}{<target-ipaddr><tip-mask>|any}
SetsanextendedegressACLwhich
matchesARPpacket.
zte(cfg)#clearegress-aclextendnumber<500-599>
ClearsanextendedegressACL
instance.
zte(cfg)#configegress-acllinknumber<600-699>
Createsalayer-2egressACLinstance
andconguresit.
zte(egress-link-acl)#rule<1-500>{permit|deny}ip{[coss<0-7>][<
vlan-id>[<vlan-mask>]][<dest-mac><dmac-mask>|any]}
Setsalayer-2egressACLwhich
matchestheIPpacket.
zte(egress-link-acl)#rule<1-500>{permit|deny}arp{[coss<0-7>][<
vlan-id>[<vlan-mask>]][<dest-mac><dmac-mask>|any]}
Setsalayer-2egressACLwhich
matchestheARPpacket.
zte(egress-link-acl)#rule<1-500>{permit|deny}other{[ether-type
<1501-65535>|dsap-ssap<0-65535>][coss<0-7>][<vlan-id>[<
vlan-mask>]][<source-mac><smac-mask>|any][<dest-mac><dmac-mask>|
any]}
Setsalayer-2egressACLwhich
matchesthepacketsexceptIP/ARP .
zte(egress-link-acl)#rule<1-500>{permit|deny}any[<vlan-id>[<vlan-ma
sk>]][cos<0-7>][<dest-mac><dmac-mask>|any]
Setstherulethatalayer-2egressACL
isusedtomatchpacketswithspecied
cos,VLANid,anddmacags.
zte(cfg)#clearegress-acllinknumber<600-699>Clearsalayer-2egressACLinstance.
4-47
SJ-20120409144109-002|2012-07-02(R1.0)ZTEProprietaryandCondential

Table of Contents

Related product manuals