Acl Configuration Examples; Ipv4 Acl Application Configuration Example - H3C S5820X Series Configuration Manual

Acl and qos

Hide thumbs Also See for S5820X Series:

Command reference manual (488 pages)

Configuration manual (252 pages)

High availability configuration manual (233 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

page of 121

/ 121
Contents
Table of Contents
Bookmarks

Table of Contents

To do...

Display the usage of ACL resources

Display the application status of

packet filtering ACLs on interfaces

Display the configuration and

status of one or all time ranges

Clear statistics on one or all IPv4

ACLs

Clear statistics on one or all IPv6

basic and advanced ACLs

ACL configuration examples

IPv4 ACL application configuration example

Network requirements

As shown in

Device A so that every day from 8:00 to 18:00 the interface allows only packets sourced from Host A to

pass. Configure Device A to output packet filtering logs to the console at 10-minute intervals.

Figure 1 Network diagram for applying an IPv4 ACL to an interface for packet filtering

Configuration procedure

# Create a time range from 08:00 to 18:00 every day.

<DeviceA> system-view

[DeviceA] time-range study 8:00 to 18:00 daily

# Create IPv4 ACL 2009, and configure two rules in the ACL. One rule permits packets sourced from

Host A at 192.168.1.2 and the other rule denies packets sourced from any other host during the time

range study. Enable logging for both rules.

[DeviceA] acl number 2009

[DeviceA-acl-basic-2009] rule permit source 192.168.1.2 0 time-range study logging

Use the command...

display acl resource [ slot slot-number ] [ |

{ begin | exclude | include }

regular-expression ]

display packet-filter { { all | interface

interface-type interface-number } [ inbound |

outbound ] | interface vlan-interface

vlan-interface-number [ inbound | outbound ]

[ slot slot-number ] } [ | { begin | exclude |

include } regular-expression ]

display time-range { time-range-name | all }

[ | { begin | exclude | include }

regular-expression ]

reset acl counter { acl-number | all | name

acl-name }

reset acl ipv6 counter { acl6-number | all |

name acl6-name }

Figure

1, apply an ACL to the inbound direction of interface GigabitEthernet 1/0/1 on

Remarks

Available in any view

Available in user view

Table of Contents

This manual is also suitable for:

S5800 series

Acl Configuration Examples; Ipv4 Acl Application Configuration Example - H3C S5820X Series Configuration Manual

ACL configuration examples

IPv4 ACL application configuration example

Related Manuals for H3C S5820X Series

Related Content for H3C S5820X Series

This manual is also suitable for:

Table of Contents