1. Manuals
  2. Brands
  3. Zte Manuals
  4. Switch
  5. ZXR10 2910E-PS
  6. Configuration manual

Zte ZXR10 2910E-PS Configuration Manual page 93

Zxr10 2900e series easy-maintenance secure switch
Hide thumbs Also See for ZXR10 2910E-PS:
Table of Contents

Advertisement

Command
zte(cfg)#config egress-acl extend number < 500-599>
zte(egress-extend-acl)#rule < 1-500>{ permit | deny}< ip-protocol>{<
source-ipaddr>< sip-mask>| any}{< destination-ipaddr>< dip-mask>| any}[
dsscp < 0-63>][ fragment]
zte(egress-extend-acl)#rule < 1-500>{ permit | deny} icmp {<
source-ipaddr>< sip-mask>| any}{< destination-ipaddr>< dip-mask>| any}[
iicmp-ttype < 0-254>< icmp-code>][ dsscp < 0-63>][ fragment]
zte(egress-extend-acl)#rule < 1-500>{ permit | deny} ip {< source-ipaddr><
sip-mask>| any}{< destination-ipaddr>< dip-mask>| any}[ dsscp < 0-63>][
fragment]
zte(egress-extend-acl)#rule < 1-500>{ permit | deny} tcp {< source-ipaddr><
sip-mask>| any}[ ssourrce-porrtt < 0-65535>< sport-mask>]{<
destination-ipaddr>< dip-mask>| any}[ desstt-porrtt < 0-65535><
dport-mask>][ establishing | established][ dsscp < 0-63>][ fragment]
zte(egress-extend-acl)#rule < 1-500>{ permit | deny} udp {<
source-ipaddr>< sip-mask>| any}[ ssourrce-porrtt < 0-65535><
sport-mask>]{< destination-ipaddr>< dip-mask>| any}[ desstt-porrtt <
0-65535>< dport-mask>][ dsscp < 0-63>][ fragment]
zte(egress-extend-acl)#rule < 1-500>{ permit | deny} arp {< sender-ipaddr><
sip-mask>| any}{< target-ipaddr>< tip-mask>| any}
zte(cfg)#clear egress-acl extend number < 500-599>
zte(cfg)#config egress-acl link number < 600-699>
zte(egress-link-acl)#rule < 1-500>{ permit | deny} ip {[ coss < 0-7>][<
vlan-id>[< vlan-mask>]][< dest-mac>< dmac-mask>| any]}
zte(egress-link-acl)#rule < 1-500>{ permit | deny} arp {[ coss < 0-7>][<
vlan-id>[< vlan-mask>]][< dest-mac>< dmac-mask>| any]}
zte(egress-link-acl)#rule < 1-500>{ permit | deny} other {[ ether-type
< 1501-65535>| dsap-ssap < 0-65535>][ coss < 0-7>][< vlan-id>[<
vlan-mask>]][< source-mac>< smac-mask>| any][< dest-mac>< dmac-mask>|
any]}
zte(egress-link-acl)#rule <1-500>{permit | deny} any [<vlan-id>[<vlan-ma
sk>]][cos <0-7>][<dest-mac><dmac-mask>| any]
zte(cfg)#clear egress-acl link number < 600-699>
SJ-20120409144109-002|2012-07-02(R1.0)
Chapter 4 Service Configuration
Function
Creates an extended egress ACL
instance and configures it.
Sets an extended egress ACL which
matches the protocol field of IPv4.
Sets an extended egress ACL which
matches ICMP packet.
Sets an extended egress ACL which
matches IP packet.
Sets an extended egress ACL which
matches TCP packet.
Sets an extended egress ACL which
matches UDP packet.
Sets an extended egress ACL which
matches ARP packet.
Clears an extended egress ACL
instance.
Creates a layer-2 egress ACL instance
and configures it.
Sets a layer-2 egress ACL which
matches the IP packet.
Sets a layer-2 egress ACL which
matches the ARP packet.
Sets a layer-2 egress ACL which
matches the packets except IP/ARP.
Sets the rule that a layer-2 egress ACL
is used to match packets with specified
cos, VLAN id, and dmac flags.
Clears a layer-2 egress ACL instance.
4-47
ZTE Proprietary and Confidential
Show Quick Links

Hide quick links:

Advertisement

Table of Contents
loading

Related Manuals for Zte ZXR10 2910E-PS

Related Products for Zte ZXR10 2910E-PS

This manual is also suitable for:

Zxr10 2928eZxr10 2952eZxr10 2918e-psZxr10 2918eZxr10 2928e-ps

Table of Contents