Acl Configuration Examples - H3C S5120-SI Series Configuration Manual
Hide thumbs
Also See for S5120-SI Series:
- Command reference manual (910 pages) ,
- Operation manual (697 pages) ,
- Configuration manual (183 pages)
Table of Contents
Advertisement
ACL Configuration Examples
ACL Configuration Examples
Network requirements
As shown in
Figure
Device A so that the interface denies IPv4 packets sourced from Host A from 8:00 to 18:00 everyday.
Figure 1-1 Network diagram for applying an ACL to an interface for filtering
Host A
192.168.1.2/24
Host B
192.168.1.3/24
Configuration procedure
# Create a time range named study, setting it to become active from 08:00 to 18:00 everyday.
<DeviceA> system-view
[DeviceA] time-range study 8:00 to 18:00 daily
# Create basic ACL 2009.
[DeviceA] acl number 2009
# Create a basic ACL rule to deny packets sourced from 192.168.1.2/32 during time range study.
[DeviceA-acl-basic-2009] rule deny source 192.168.1.2 0 time-range study
[DeviceA-acl-basic-2009] quit
# Apply ACL 2009 to the inbound direction of interface GigabitEthernet 1/0/1.
[DeviceA] interface gigabitethernet 1/0/1
[DeviceA-GigabitEthernet1/0/1] packet-filter 2009 inbound
1-1, apply an ACL to the inbound direction of interface GigabitEthernet 1/0/1 on
GE1/0/1
Device A
IP network
1-11
Advertisement
Chapters
Table of Contents
Troubleshooting
