Manualshelf

3Com Switch 7750 Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module
651652653654655656657658659660
ACL Configuration Example 655
filtered within the time range from 8:00 to 18:00 everyday. Apply this ACL on
Ethernet 2/0/1 port.
Network diagram
Figure 168 Network diagram for Layer 2 ACL configuration
Configuration procedure
n
Only the commands related to the ACL configuration are listed below.
1 Define the time range
# Define the time range ranging from 8:00 to 18:00.
<SW7750> system-view
[SW7750] time-range test 8:00 to 18:00 daily
2 Define an ACL rule for packets with the source MAC address of 0011-0011-0011
and destination MAC address of 0011-0011-0012.
# Create ACL 4000.
[SW7750] acl number 4000
# Define an ACL rule to deny packets with the source MAC address of
0011-0011-0011 and destination MAC address of 0011-0011-0012, specifying
the time range named test for the ACL rule.
[SW7750-acl-link-4000] rule 1 deny ingress 0011-0011-0011 ffff-ffff-
ffff egress 0011-0011-0012 ffff-ffff-ffff time-range test
[SW7750-acl-link-4000] quit
3 Apply the ACL on a port.
# Apply ACL 4000 on the port Ethernet 2/0/1.
[SW7750] interface Ethernet 2/0/1
[SW7750-Ethernet2/0/1] qos
[SW7750-qosb-Ethernet2/0/1] packet-filter inbound link-group 4000
User-Defined ACL
Configuration Example
Network requirements
Create a user-defined ACL to deny all TCP packets within the time range from
8:00 to 18:00 everyday. Apply the user-defined ACL on Ethernet 2/0/1 port.
Switch
Eth2/0/1
PC 1
0011-0011-0011
PC 2
To the router