Manualshelf

3Com Switch 7750 Configuration Guide Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module
611612613614615616617618619620
612 CHAPTER 57: ACL CONFIGURATION
[SW7750-acl-link-4000] rule 1 deny ingress 00e0-fc01-0101 ffff-ffff-
ffff egress 00e0-fc01-0303 ffff-ffff-ffff time-range test
[SW7750-acl-link-4000] quit
3 Apply the ACL on a port.
# Apply ACL 4000 on the port Ethernet1/0/1.
[SW7750] interface Ethernet 1/0/1
[SW7750-Ethernet1/0/1] qos
[SW7750-qoss-Ethernet1/0/1] packet-filter inbound link-group 4000
User-Defined ACL
Configuration Example
Network requirements
Create a user-defined ACL to deny all TCP packets within the time range from
8:00 to 18:00 everyday. Apply the user-defined ACL on Ethernet1/0/1 port.
Network diagram
Figure 155 Network diagram for user-defined ACL configuration
Configuration procedure
n
Only the commands related to the ACL configuration are listed below.
1 Define the time range.
# Define the time range ranging from 8:00 to 18:00.
<SW7750> system-view
[SW7750] time-range aaa 8:00 to 18:00 daily
2 Create an ACL rule to filter TCP packets.
# Create ACL 5000.
[SW7750] acl number 5000
# Define a rule for TCP packets.
[SW7750-acl-user-5000] rule 1 deny 06 ff 27 time-range aaa
3 Apply the ACL on a port.
# Apply ACL 5000 on the port Ethernet1/0/1.
[SW7750] interface Ethernet 1/0/1
[SW7750-Ethernet1/0/1] qos
[SW7750-qoss-Ethernet1/0/1] packet-filter inbound user-group 5000