Acl Creation - 3Com 3C13636 Configuration Manual

Router 3000 ethernet family

Hide thumbs Also See for 3C13636:

Installation manual (27 pages)

Table of Contents

3Com Router 3000 Ethernet Family

Configuration Guide

to configuration sequence. For interface-based access control rules, put the rule

configured with "any" behind, and arrange others according to configuration sequence.

For advance access control rules, compare their source address wildcards first. If they

are the same, compare their destination address wildcards. If they are also the same,

compare their ranges of port number. Put those with smaller ranges before others. If the

ranges of port number are still the same, arrange then according to configuration

The display acl command can be used to verify which rule takes effect first. Upon the

display, the rule that is listed first takes effect first.

5.1.4 ACL Creation

An ACL is virtually a series of rule lists that consist of permit | deny statements.

Several rule lists constitute an ACL. Before configuring the rule of ACL, you need to

create an ACL first.

The following command can be used to create an ACL:

acl number acl-number [ match-order { config | auto } ]

The following command can be used to delete an ACL:

undo acl { number acl-number | all }

Parameter description:

number acl-number: Specify a number-typed ACL.

acl-number: Number of ACL. An interface-based ACL takes a value in the range

1000 to 1999, a number-based basic ACL in the range 2000 to 2999, a

number-based advanced ACL in the range 3000 to 3999, and a MAC-based ACL

in the range 4000 to 4999.

match-order config: Specify to match rules according to configuration sequence

of the user.

match-order auto: Specify to match rules by system automatic sequencing,

namely in "depth priority" sequence.

all: Delete all configured ACL.

By default, the match order is configuration sequence of the user, namely "config" is in

use. Once the user specifies the match order of a certain ACL, he can never change it,

unless he deletes all the contents in the ACL and specifies its match order again.

ACL view can be entered after an ACL is created. ACL view is classified according to

the application purpose of ACL. For example, advanced ACL view can be entered by

creating a number-typed ACL numbered 3000. The following is the router prompt:

[3Com-acl-adv-3000]

After entering the ACL view, you can configure ACL rules. The rules of different ACLs

are different. The detailed configuration method of each ACL rule will be introduced

respectively in the following sections.

3Com Corporation

Chapter 5 ACL Configuration

Chapters

Table of Contents

Troubleshooting

3c13636-us - router 3036 3000 series

Acl Creation - 3Com 3C13636 Configuration Manual

5.1.4 ACL Creation

Chapters

Troubleshooting

Related Manuals for 3Com 3C13636

Related Content for 3Com 3C13636

This manual is also suitable for:

Table of Contents