Packet-Filter - Huawei Quidway S8500 Series Command Manual

Command Manual – QoS/ACL
Quidway S8500 Series Routing Switches
Parameter
inbound: Mirrors inbound packets at the port.
ip-group { acl-number | acl-name }: Activates IP ACLs, including basic and advanced
ACLs. acl-number: Sequence number of ACL, ranging from 2000 to 3999. acl-name:
Name of the ACL, which must be a character string starting with an English letter (a-z or
A-Z), and without any space or quotation mark in it.
rule rule: Specifies the subitem of an active ACL, ranging from 0 to 127; if not specified,
all subitems of ACL will be activated.
system-index index: Specifies the system index value of the rule which will be indexed
during operation. After delivering a rule, the system automatically assigns a globally
unique index value to the rule. When using the mirrored-to command to deliver a rule,
you can also specify a system index value for the rule. In general, you are not
recommended to specify this parameter manually.
cpu: Mirrors traffic to the CPU.
Description
Use the mirrored-to command to activate an ACL and mirror matching data streams in
VLAN to the CPU.
Use the undo mirrored-to command to remove traffic mirroring setting.
This configuration is only applicable to the packets which match the permit rules in the
ACL.
Example
# Mirror to the CPU the packets which are received by a port in VLAN2 and match the
permit rules in the ACL 2000.
<Quidway> system-view
System View: return to User View with Ctrl+Z.
[Quidway] vlan 2
[Quidway-vlan2] mirrored-to inbound ip-group 2000 cpu

4.1.2 packet-filter

Syntax
packet-filter inbound ip-group { acl-number | acl-name } [ rule rule [ system-index
index ] ]
undo packet-filter inbound ip-group { acl-number | acl-name } [ rule rule ]
View
VLAN view
Chapter 4 VLAN-ACL Configuration Commands
Huawei Technologies Proprietary
4-2