Example For Configuring A Customized Acl - Huawei Quidway S3700 Series Configuration Manual
Hide thumbs
Also See for Quidway S3700 Series:
- Configuration manual (398 pages) ,
- Quick start manual (70 pages) ,
- Manual (69 pages)
Table of Contents
Advertisement
Quidway S3700 Series Ethernet Switches
Configuration Guide - Security
----End
Configuration Files
#
sysname Quidway
#
acl number 4000
rule 5 deny destination-mac 0260-e207-0002 source-mac 00e0-f201-0101
#
traffic classifier tc1 operator and
if-match acl 4000
#
traffic behavior tb1
deny
#
traffic policy tp1
classifier tc1 behavior tb1
#
interface GigabitEthernet0/0/1
traffic-policy tp1 inbound
#
return
10.5.4 Example for Configuring a Customized ACL
Networking Requirements
As shown in
connected to the upstream router. It is required that the upstream interface GE 0/0/2 be bound
to the customized ACL. The customized ACL needs to match the packets from the fifteenth byte
of the Layer 2 header and reject matched packets. The matched character string is 0x0180C200.
Figure 10-4 Networking for configuring a customized ACL
Configuration Roadmap
The configuration roadmap is as follows:
Issue 01 (2011-07-15)
Behavior: tb1
Deny
Figure
10-4, GE 0/0/1 of the Switch is connected to the user, and GE 0/0/2 is
PC A
GE0/0/1
Switch
PC B
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
GE0/0/2
10 ACL Configuration
246
Advertisement
Table of Contents
