Examples For Applying Acls To Hardware; Basic Acl Configuration Example - H3C S3100-52P Operation Manual
Hide thumbs
Also See for S3100-52P:
- Operation manual (62 pages) ,
- Command manual (55 pages) ,
- Installation manual (54 pages)
Table of Contents
Advertisement
Operation Manual – ACL
H3C S3100-52P Ethernet Switch
[Sysname] acl number 2001
[Sysname-acl-basic-2001] rule 1 permit source 10.110.100.46 0
[Sysname-acl-basic-2001] quit
# Reference ACL 2001 to control users logging in to the Web server.
[Sysname] ip http acl 2001
1.5 Examples for Applying ACLs to Hardware
1.5.1 Basic ACL Configuration Example
I. Network requirements
PC 1 and PC 2 connect to the switch through Ethernet 1/0/1. PC1's IP address is
10.1.1.1. Apply an ACL on Ethernet 1/0/1 to deny packets with the source IP address of
10.1.1.1 from 8:00 to 18:00 everyday.
II. Network diagram
Figure 1-3 Network diagram for basic ACL configuration
III. Configuration procedure
# Define a periodic time range that is active from 8:00 to 18:00 everyday.
<Sysname> system-view
[Sysname] time-range test 8:00 to 18:00 daily
# Define ACL 2000 to filter packets with the source IP address of 10.1.1.1.
[Sysname] acl number 2000
[Sysname-acl-basic-2000] rule 1 deny source 10.1.1.1 0 time-range test
[Sysname-acl-basic-2000] quit
# Apply ACL 2000 on Ethernet 1/0/1.
[Sysname] interface Ethernet1/0/1
[Sysname-Ethernet1/0/1] packet-filter inbound ip-group 2000
1-15
Chapter 1 ACL Configuration
Advertisement
Chapters
Table of Contents
Troubleshooting
