Applying Acls On Ports - 3Com 4200G 12-Port Configuration Manual
4200g series switch
Hide thumbs
Also See for 4200G 12-Port:
- Configuration manual (730 pages) ,
- Getting started manual (104 pages) ,
- Quick reference manual (43 pages)
Table of Contents
Advertisement
Configuration Example
Applying ACLs on
Ports
Configuration
Preparation
Configuration Procedure
Table 180 Rule information (Continued)
Parameter
Type
cos vlan-pri
Priority
time-range
Time range
time-name
information
type protocol-type
Protocol type of
protocol-mask
Ethernet frames
Configure ACL 4000 to deny packets whose 802.1p priority is 3.
<S4200G> system-view
[4200G] acl number 4000
[4200G-acl-ethernetframe-4000] rule deny cos 3
[4200G-acl-ethernetframe-4000] display acl 4000
Ethernet frame ACL
Acl's step is 1
rule 0 deny cos excellent-effort(0 times matched)
By applying ACLs on ports, you can enable the packet filtering.
You can filter inbound packets on each port. Inbound packets refer to packets
■
received on a port.
Before applying an ACL on a port, you must define the ACL first. For the ACL
configuration of time ranges, refer to Defining Basic ACLs, Defining Advanced ACLs,
and Defining Layer 2 ACLs.
Table 181 Apply an ACL on a port
Operation
Command
Enter system view
system-view
Enter Ethernet port view interface interface-type interface-number
Apply an ACL on a port
packet-filter inbound acl-rule
The ACLs applied on a port can combinations of different types of ACLs. Table 182
describes the ACL combinations.
Table 182 Combined application of ACLs
Combination mode
Apply all rules in an IP type ACL separately
Apply one rule in an IP type ACL separately
Apply all rules in a Link type ACL separately
Apply one rule in a Link type ACL separately
Apply one rule in an IP type ACL and one rule
in a Link type ACL simultaneously
Function
Defines the
802.1p priority of
the rule
Specifies the time
range in which
the rule is active
Defines the
protocol type of
Ethernet frames
4000, 1 rule
Form of acl-rule
ip-group acl-number
ip-group acl-number rule rule
link-group acl-number
link-group acl-number rule rule
ip-group acl-number rule rule link-group
acl-number rule rule
Applying ACLs on Ports 209
Description
vlan-pri: VLAN priority, in the range
of 0 to 7
time-name: specifies the name of the
time range in which the rule is active;
a string of 1 to 32 characters
protocol-type: protocol type
protocol-mask: protocol type mask
Description
-
-
Required
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
