The hybrid ACL number ranges from 300 to 399. A hybrid ACL is applied to the
Ethernet interface and PON-ONU interface.
2. Configure the ACL rules.
ZXAN(config-hybd-acl)#rule 1 deny any any any arp
ZXAN(config-hybd-acl)#rule 2 deny any any 192.168.1.0 0.0.0.255 ip ingress 0000.
0000.0001 0000.0000.0000 egress any
ZXAN(config-hybd-acl)#rule 3 permit any any any any
ZXAN(config-hybd-acl)#exit
Each hybrid ACL supports up to 127 rules.
If the time range is not configured, the rule is always effective.
3. In Ethernet interface configuration mode, apply the ACL.
ZXAN(config)#interface gei_1/21/1
ZXAN(config-if)#ip access-group 300 in
4. (Optional) Query the ACL configuration.
ZXAN(config-if)#show acl 300
acl hybrid number 300
rule 1 deny any any any arp ingress any egress any
rule 2 deny any any 192.168.1.0 0.0.0.255
ip ingress 0000.0000.0001 0000.0000.0000 egress any
rule 3 permit any any any any ingress any egress any
5. (Optional) Query the interface bound with the ACL.
ZXAN(config-if)#show access-list bound
Interface
gei_1/21/1
– End of Steps –
8.5 Configuring an IPv6 Hybrid ACL
This section describes how to configure an IPv6 hybrid ACL and apply it to an Ethernet
interface.
SJ-20130520164529-007|2013-06-30 (R1.0)
Note:
Note:
Direction Type
Status
in
V4HYBD successful
8-7
ZTE Proprietary and Confidential
Chapter 8 ACL Configuration
Acl number/name
300