Configuration procedure
Follow these steps to apply ACL rules to ports in a VLAN:
To do...
Enter system view
Apply ACL rules to ports in a
VLAN
Configuration example
# Apply ACL 2000 to all ports of VLAN 1 in the inbound direction to filter packets.
<Sysname> system-view
[Sysname] packet-filter vlan 1 inbound ip-group 2000
Displaying and Maintaining ACL Configuration
To do...
Display a configured ACL or all
the ACLs
Display a time range or all the
time ranges
Display information about
packet filtering
Display information about ACL
resources
Examples for Upper-layer Software Referencing ACLs
Example for Controlling Telnet Login Users by Source IP
Network requirements
Apply an ACL to permit users with the source IP address of 10.110.100.52 to telnet to the switch.
Network diagram
Figure 1-1 Network diagram for controlling Telnet login users by source IP
Internet
Switch
Use the command...
system-view
packet-filter vlan vlan-id
{ inbound | outbound }
acl-rule
display acl { all | acl-number }
display time-range { all | time-name }
display packet-filter { interface
interface-type interface-number | unitid
unit-id }
display drv qacl_resource
PC
10.110.100.52
Use the command...
1-11
Remarks
—
Required
For information about acl-rule,
refer to ACL Commands.
Remarks
Available in any
view