3Com Switch 7750 Configuration Guide Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module

601

602

603

604

605

606

607

608

609

610

Applying ACLs on Ports 607

Applying ACLs on

Ports

By applying ACLs on ports, you can filter certain packets.

Configuration

Preparation

You need to define an ACL before applying it on a port. For operations to define

ACLs, refer to

“Defining Basic ACLs”, “Defining Advanced ACLs”, “Defining Layer

2 ACLs”, and “Defining User-Defined ACLs”.

Configuration Procedure

acl-rule: Applied ACL, which can be a combination of different types of ACL rules.

Table 480 and Table 482 describe the ACL combinations on Type A I/O Modules

and the corresponding parameter description. Table 481 and Table 482 describe

the ACL combinations on I/O Modules other than Type A and the corresponding

parameter description.

Table 479 Apply an ACL on a port

Operation Command Description

Enter system view system-view -

Enter Ethernet port view

interface interface-type

interface-number

Enter QoS view qos -

Apply an ACL on the port

packet-filter { inbound |

outbound } acl-rule [

system-index system-index ]

[ not-care-for-interface ]

Required

This command is supported by

Type A I/O Modules.

packet-filter inbound

acl-rule [ system-index

system-index ]

Required

This command is supported by

I/O Modules other than Type

Display the ACL information

sent to a port

display acl

running-packet-filter { all |

interface interface-type

interface-number }

Optional

This command can be

executed in any view.

Table 480 Combined application of ACLs on Type A I/O Modules

Combination mode Form of acl-rule

Apply all rules in an IP type ACL separately ip-group { acl-number | acl-name }

Apply one rule in an IP type ACL separately

ip-group { acl-number | acl-name } rule

rule-id

Apply all rules in a link type ACL separately link-group { acl-number | acl-name }

Apply one rule in a link type separately

link-group { acl-number | acl-name } rule

rule-id

Table 481 Combined application of ACLs on I/O Modules other than Type A.

Combination mode Form of acl-rule

Apply all rules in an IP type ACL separately ip-group { acl-number | acl-name }

Apply one rule in an IP type ACL separately

ip-group { acl-number | acl-name } rule

rule-id

Apply all rules in a link type ACL separately link-group { acl-number | acl-name }