Basic Acl Configuration Example - Huawei Quidway S3900 Series Operation Manual
Hide thumbs
Also See for Quidway S3900 Series:
- Specifications (9 pages) ,
- Installation manual (95 pages) ,
- Command manual (1159 pages)
Table of Contents
Advertisement
Operation Manual – ACL
Quidway S3900 Series Ethernet Switches-Release 1510
# Define an ACL rule for requests destined for the wage server.
[Quidway-acl-adv-3000] rule 1 deny ip destination 192.168.1.2 255.255.255.0
time-range test
[Quidway-acl-adv-3000] quit
3)
Apply the ACL on the port.
# Apply ACL 3000 on the port.
[Quidway] interface gigabitethernet1/1/1
[Quidway-GigabitEthernet1/1/1] packet-filter inbound ip-group 3000
1.9.2 Basic ACL Configuration Example
I. Network requirements
Through basic ACL configuration, packets from the host with the source IP address of
10.1.1.1 (the host is connected to the switch through GigabitEthernet1/1/1 port) are to
be filtered within the time range from 8:00 to 18:00 everyday.
II. Network diagram
Figure 1-2 Network diagram for basic ACL configuration
III. Configuration procedure
Note:
Only the commands related to the ACL configuration are listed below.
1)
Define the time range
# Define the time range from 8:00 to 18:00.
<Quidway> system-view
[Quidway] time-range test 8:00 to 18:00 daily
2)
Define an ACL for packets with the source IP address of 10.1.1.1.
# Create ACL 2000.
[Quidway] acl number 2000
# Define an access rule to deny packets with their source IP addresses being 10.1.1.1.
To router
#1
Switch
Huawei Technologies Proprietary
1-18
Chapter 1 ACL Configuration
- Quick Links:
- Switch Models
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
