R211x-HP Flexfabric 11900 ACL and QoS Configuration Guide
62
Configuration example
Network requirements
As shown in Figure 18, configure traffic filtering to filter the packets with source port not being 21, and
received on Ten-GigabitEthernet 1/0/1.
Figure 18 Network diagram
Configuration procedure
# Create advanced ACL 3000, and configure a rule to match packets whose source port number is 21.
<Device> system-view
[Device] acl number 3000
[Device-acl-adv-3000] rule 0 permit tcp source-port eq 21
[Device-acl-adv-3000] quit
# Create a traffic class named classifier_1, and use ACL 3000 as the match criterion in the traffic class.
[Device] traffic classifier classifier_1
[Device-classifier-classifier_1] if-match acl 3000
[Device-classifier-classifier_1] quit
# Create a traffic behavior named behavior_1, and configure the traffic filtering action to drop packets.
[Device] traffic behavior behavior_1
[Device-behavior-behavior_1] filter deny
[Device-behavior-behavior_1] quit
# Create a QoS policy named policy, and associate traffic class classifier_1 with traffic behavior
behavior_1 in the QoS policy.
[Device] qos policy policy
[Device-qospolicy-policy] classifier classifier_1 behavior behavior_1
[Device-qospolicy-policy] quit
# Apply the QoS policy named policy to the incoming traffic of FortyGigE 1/0/1.
[Device] interface FortyGigE 1/0/1
[Device-FortyGigE1/0/1] qos apply policy policy inbound
# Apply the QoS policy named policy to the incoming traffic of Ten-GigabitEthernet 1/0/1.
[Device] interface Ten-GigabitEthernet 1/0/1
[Device-Ten-GigabitEthernet1/0/1] qos apply policy policy inbound