Example For Configuring A Layer 2 Acl - Huawei Quidway S2700 Series Configuration Manual
Hide thumbs
Also See for Quidway S2700 Series:
- Configuration manual (354 pages) ,
- Hardware installation and maintenance manual (183 pages) ,
- Quick start manual (62 pages)
Table of Contents
Advertisement
Quidway S2700 Series Ethernet Switches
Configuration Guide - Security
satime
#
acl number 3003
rule 5 deny ip source 10.164.3.0 0.0.0.255 destination 10.164.9.9 0 time-range
satime
#
traffic classifier c_market operator or
if-match acl 3002
traffic classifier c_rd operator or
if-match acl 3003
#
traffic behavior b_market
deny
traffic behavior b_rd
deny
#
traffic policy p_market
classifier c_market behavior b_market
traffic policy p_rd
classifier c_rd behavior b_rd
#
interface Vlanif10
ip address 10.164.1.1 255.255.255.0
#
interface Vlanif20
ip address 10.164.2.1 255.255.255.0
#
interface Vlanif30
ip address 10.164.3.1 255.255.255.0
#
interface Vlanif100
ip address 10.164.9.1 255.255.255.0
#
interface Ethernet0/0/1
port link-type access
port default vlan 10
#
interface Ethernet0/0/2
port link-type access
port default vlan 20
traffic-policy p_market inbound
#
interface Ethernet0/0/3
port link-type access
port default vlan 30
traffic-policy p_rd inbound
#
interface Ethernet0/0/4
port link-type access
port default vlan 100
#
return
9.5.3 Example for Configuring a Layer 2 ACL
Networking Requirements
As shown in
required that the ACL configured to prevent the packets with the source MAC address as 00e0-
f201-0101 and the destination MAC address as 0260-e207-0002 from passing through.
Issue 01 (2011-07-15)
Figure
9-3, the Switch that functions as the gateway is connected to the PC. It is
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
9 ACL Configuration
175
Advertisement
Table of Contents
