H3C S7500 Series Ethernet Switches Operation Manual
Operation Manual – ACL
H3C S7500 Series Ethernet Switches Chapter 1
ACL Configuration
1-4
range. If you remove the time range of an ACL rule, the ACL rule becomes invalid the
next time the ACL rule timer refreshes.
1.1.4 Types of ACLs Supported by Ethernet Switches
The following types of ACLs are supported by Ethernet switches:
z Basic ACL
z Advanced ACL
z Layer 2 ACL
z User-defined ACL
1.2 Choosing ACL Mode for Traffic Flows
A switch can only choose one ACL mode for traffic flows, Layer 2 ACL mode or Layer 3
ACL mode. In Layer 2 ACL mode, only Layer 2 ACL can be activated or imported by
other applications, and Layer 3 ACL mode is similar.
1.2.1 Configuration Procedure
Table 1-1 Choose ACL mode for traffic flows
To do… Use the command... Remarks
Enter system view
system-view
—
Choose ACL mode
for traffic flows
acl mode { ip-based
| link-based }
Required
By default, a switch chooses
ip-based ACL mode for traffic flows,
that is, ACL classifies the traffic
flows based on Layer 3 information.
Display the ACL
mode for traffic flows
display acl mode
Optional
The display command can be
executed in any view
 Note:
This configuration is only effective on Type A line processing units (LPUs).
1.2.2 Configuration Example
# Configure the ACL mode for traffic flows as link-based.
<H3C> system-view
[H3C] acl mode link-based
[H3C] display acl mode