Manualshelf

3Com Switch 4200G Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module
221222223224225226227228229230
212 CHAPTER 26: ACL CONFIGURATION
Layer 2 ACL
Configuration Example
Network requirements
Through Layer 2 ACL configuration, packets with the source MAC address of
00e0-fc01-0101 and destination MAC address of 00e0-fc01-0303 are to be filtered
within the time range from 8:00 to 18:00 everyday.
Network diagram
Figure 63 Network diagram for Layer 2 ACL configuration
Configuration procedure
Only the commands related to the ACL configuration are listed below.
1 Define the time range. Define the time range from 8:00 to 18:00.
<S4200G> system-view
[4200G] time-range test 8:00 to 18:00 daily
2 Define an ACL for packets with the source MAC address of 00e0-fc01-0101 and
destination MAC address of 00e0-fc01-0303. Enter Layer 2 ACL view of ACL 4000.
[4200G] acl number 4000
3 Define a traffic classification rule for packets with the source MAC address of
00e0-fc01-0101 and destination MAC address of 00e0-fc01-0303.
[4200G-acl-ethernetframe-4000] rule 1 deny source 00e0-fc01-0101
ffff-ffff-ffff dest 00e0-fc01-0303 ffff-ffff-ffff time-range test
[4200G-acl-ethernetframe-4000] quit
4 Active the ACL. Active ACL 4000.
[4200G] interface gigabitethernet1/0/1
[4200G-GigabitEthernet1/0/1] packet-filter inbound link-group 4000