User-Defined Acl Configuration Example - H3C S7500 Series Operation Manual
Hide thumbs
Also See for S7500 Series:
- Installation manual (79 pages) ,
- Operation manual (47 pages) ,
- Command manual (39 pages)
Table of Contents
Advertisement
Operation Manual – ACL
H3C S7500 Series Ethernet Switches
# Apply ACL 4000 on the Ethernet 2/0/1.
[H3C] interface Ethernet 2/0/1
[H3C-Ethernet2/0/1] qos
[H3C-qoss-Ethernet2/0/1] packet-filter inbound link-group 4000
1.11.4 User-Defined ACL Configuration Example
I. Network requirements
Create a user-defined ACL to deny all TCP packets within the time range from 8:00 to
18:00 everyday. Apply the user-defined ACL on Ethernet 2/0/1.
II. Network diagram
PC1
PC2
Figure 1-4 Network diagram for user-defined ACL configuration
III. Configuration procedure
Note:
Only the commands related to the ACL configuration are listed below.
1)
Define the time range.
# Define the periodic time range from 8:00 to 18:00 everyday.
[H3C] time-range test 8:00 to 18:00 daily
2)
Create an ACL rule to filter TCP packets.
# Create ACL 5000 and enter ACL 5000 view.
[H3C] acl number 5000
# Define a rule for TCP packets.
[H3C-acl-user-5000] rule 1 deny 06 ff 27 time-range test
3)
Apply the ACL on a port.
# Apply ACL 5000 on port Ethernet 2/0/1.
Eth2/0/1
Switch
1-26
Chapter 1 ACL Configuration
To the router
Advertisement
Chapters
Table of Contents
Troubleshooting
