Huawei Quidway S6500 Series Operation Manual page 339
Hide thumbs
Also See for Quidway S6500 Series:
- Supplementary manual (5 pages) ,
- Command manual (845 pages)
Table of Contents
Advertisement
Operation Manual - QoS/ACL
Quidway S6500 Series Ethernet Switches
Table 1-1 Hardware match order of ACL's sub-rule
Switch
S6500
Series
The case includes: ACL cited by QoS function, ACL used for filter the packet
transmitted by the hardware. etc.
II. The case of filter or classify the data transmitted by the software
ACL can be used to filter or classify the data treated by the software of switch. In this
case, the match order of ACL's sub-rules can be determined by the user. There are two
match-orders: config (by following the user-defined configuration order when matching
the rule) and auto (according to the system sorting automatically when matching the
rule, i.e. in depth-first order). Once the user specifies the match-order of an access
control rule, he cannot modify it later, unless he deletes all the content and specifies the
match-order again.
The case includes: ACL cited by route policy function, ACL used for control logon user,
etc.
Hardware match order of ACL's sub-rule
An ACL is configured with multiple sub-rules. The sub-rule with the more
accurate range is matched first; if some rules define the same range, the
latest sub-rule will be matched first. For example, ACL 3000 has rule 0
and rule 1, the definition of rule 0 is "rule 0 permit ip source 1.1.1.1
0.0.255.255 destination 2.2.2.2 0.0.255.255", the definition of rule 1 is
"rule 1 permit ip source 1.1.1.1 0.0.0.255 destination 2.2.2.2 0.0.0.255",
then the rule 1 is more accurate, it will be matched first.
Huawei Technologies Proprietary
1-2
Chapter 1 ACL Configuration
- Quick Links:
- Function Features
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
