Acl Configuration Example; Advanced Acl Configuration Example - Huawei Quidway S3900 Series Operation Manual
Hide thumbs
Also See for Quidway S3900 Series:
- Specifications (9 pages) ,
- Installation manual (95 pages) ,
- Command manual (1159 pages)
Table of Contents
Advertisement
Operation Manual – ACL
Quidway S3900 Series Ethernet Switches-Release 1510
The display acl command displays matched information processed by the software of
the switch. To view the statistics of data forwarded by the hardware of the switch, use
the display qos-interface traffic-statistic command.
1.9 ACL Configuration Example
1.9.1 Advanced ACL Configuration Example
I. Network requirements
Different departments of an enterprise are interconnected on the intranet through the
ports of a switch. The IP address of the wage query server is 192.168.1.2. Devices of
the R&D department are connected to the GigabitEthernet1/1/1 port of the switch.
Apply an ACL to deny requests sourced from the R&D department and destined for the
wage server during the working hours (8:00 to 18:00).
II. Network diagram
R&D Dept
Figure 1-1 Network diagram for advanced ACL configuration
III. Configuration procedure
Note:
Only the commands related to the ACL configuration are listed below.
1)
Define the time range
# Define a time range that contain a periodic time section from 8:00 to 18:00.
<Quidway> system-view
[Quidway] time-range test 8:00 to 18:00 working-day
2)
Define an ACL for filtering requests destined for the wage server.
# Create ACL 3000.
[Quidway] acl number 3000
To router
Wage query server
192.168.1.2
#3
#2
#1
Switch
Huawei Technologies Proprietary
1-17
Chapter 1 ACL Configuration
- Quick Links:
- Switch Models
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
