Table of Contents
Advertisement
Command Manual - QoS/ACL
Quidway S3500 Series Ethernet Switches
destination-port operator port1 [ port2 ]: This parameter is to define the destination
TCP or UDP port number. The meaning of operator port1 [ port2 ] is same as upper
parameter.
icmp-type type code: Used when protocol is specified as icmp. type code specifies an
ICMP packet. type specifies the ICMP packet type with a number in the range of 0 to
255 or characters. code, ranging from 0 to 255, is used for icmp when ICMP packet
type are not specified with characters.
established: Used when protocol is tcp to indicate that the rule takes effect on the first
SYN packet to establish TCP connection.
precedence precedence: Specifies IP precedence with a number in the range of 0 to 7
or a name.
tos tos: Classifies the data packets with a number in the range of 0 to 15 or a name.
dscp dscp: Classifies the data packets with a number in the range of 0 to 63 or a name.
fragment: Indicates that the rule takes effect on fragmented packets only and will be
ignored for other packets.
The parameter of link ACL
protocol: Protocol carried by an Ethernet frame, which can be ip, arp, rarp,
pppoe-control, or pppoe-data.
cos vlan-pri : 802.1p priority, ranging from 0 to 7.
ingress { { source-vlan-id | source-mac-addr source-mac-wildcard | interface
{ interface-name | interface-type interface-num } }* | any }: Source information of a data
packet. [ source-vlan-id ] specifies the source VLAN of the packet, and
[ source-mac-addr source-mac-wildcard ] specifies the source MAC address and MAC
address wildcard of the data packets. These two parameters give the source MAC
address range interested the users. For example, if source-mac-wildcard is specified
as 0.0.ffff, it indicates that the user is interested in the first 32 bits (corresponding to the
0s in wildcard) of the source MAC address. interface { interface-name | interface-type
interface-num } represents the L2 port receiving the packets. any represents all the
packets received from all the ports.
egress { { dest-mac-addr dest-mac-wildcard | interface { interface-name |
interface-type interface-num } }* | any }: Specifies the destination information of data
packets. dest-mac-addr dest-mac-wildcard specifies the destination MAC address and
destination MAC address wildcard of the data packets. For example, if
dest-mac-wildcard is specified as 0.0.ffff, it indicates that the user is interested in the
first 32 bits (corresponding to the 0s in wildcard) of the destination MAC address.
interface { interface-name | interface-type interface-num } the L2 port forwarding the
packets. any represents all the packets forwarded by all the ports.
The parameter of user-defined ACL
Huawei Technologies Proprietary
1-23
Chapter 1 ACL Commands
- Quick Links:
- Logging in Switch Commands
Hide quick links:
Advertisement
Chapters
Table of Contents
