R211x-HP Flexfabric 11900 ACL and QoS Configuration Guide
10
Task Command
Display whether an ACL has been successfully applied
to an interface for packet filtering (in standalone
mode).
display packet-filter { interface [ interface-type
interface-number ] [ inbound | outbound ] | interface
vlan-interface vlan-interface-number [ inbound |
outbound ] [ slot slot-number ] }
Display whether an ACL has been successfully applied
to an interface for packet filtering (in IRF mode).
display packet-filter { interface [ interface-type
interface-number ] [ inbound | outbound ] | interface
vlan-interface vlan-interface-number [ inbound |
outbound ] [ chassis chassis-number slot slot-number ] }
Display match statistics for packet filtering ACLs.
display packet-filter statistics interface interface-type
interface-number { inbound | outbound } [ [ ipv6 ]
{ acl-number | name acl-name } ] [ brief ]
Display the accumulated statistics for packet filtering
ACLs.
display packet-filter statistics sum { inbound |
outbound } [ ipv6 ] { acl-number | name acl-name }
[ brief ]
Display detailed ACL packet filtering information (in
standalone mode).
display packet-filter verbose interface interface-type
interface-number { inbound | outbound } [ [ ipv6 ]
{ acl-number | name acl-name } ] [ slot slot-number ]
Display detailed ACL packet filtering information (in
IRF mode).
display packet-filter verbose interface interface-type
interface-number { inbound | outbound } [ [ ipv6 ]
{ acl-number | name acl-name } ] [ chassis
chassis-number slot slot-number ]
Display QoS and ACL resource usage (in standalone
mode).
display qos-acl resource [ slot slot-number ]
Display QoS and ACL resource usage (in IRF mode).
display qos-acl resource [ chassis chassis-number slot
slot-number ]
Clear ACL statistics.
reset acl [ ipv6 ] counter { acl-number | all | name
acl-name }
Clear match statistics (including the accumulated
statistics) for packet filtering ACLs.
reset packet-filter statistics interface [ interface-type
interface-number ] { inbound | outbound } [ default |
[ ipv6 ] { acl-number | name acl-name } ]
ACL configuration example
Network requirements
A company interconnects its departments through Device A. Configure an ACL to:
• Permit access from the President's office at any time to the financial database server.
• Permit access from the Financial department to the database server only during working hours (from
8:00 to 18:00) on working days.
• Deny access from any other department to the database server.