R2511-HP MSR Router Series ACL and QoS Configuration Guide(V5)

Task Command

Remarks

Clear statistics for one or all

WLAN, IPv4 basic, IPv4

advanced, Ethernet frame header,

and user-defined ACLs.

reset acl counter { acl-number | all | name

acl-name }

Available in user view.

Clear statistics for one or all IPv6

basic and advanced ACLs.

reset acl ipv6 counter { acl6-number | all |

name acl6-name }

Available in

user view.

ACL configuration examples

IPv4 advanced ACL configuration examples

Network requirements

A company interconnects its departments through Device A. Configure an ACL to:

• Permit access from the President's office at any time to the financial database server.

• Permit access from the Financial department to the database server only during working hours (from

8:00 to 18:00) on working days.

• Deny access from any other department to the database server.

Figure 1 Network diagram

Configuration procedure

# Create a periodic time range from 8:00 to 18:00 on working days.

<DeviceA> system-view

[DeviceA] time-range work 8:0 to 18:0 working-day

# Create an IPv4 advanced ACL numbered 3000 and configure three rules in the ACL. One rule permits

access from the President's office to the financial database server, one rule permits access from the

Financial department to the database server during working hours, and one rule denies access from any

other department to the database server.

[DeviceA] acl number 3000