Manualshelf

H3C S7500E Series Ethernet Switches Operation Manual

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module
981982983984985986987988989990
Operation Manual – ACL
H3C S7500E Series Ethernet Switches Chapter 2 IPv4 ACL Configuration
2-8
Caution:
z You can modify the match order of an ACL with the acl number acl-number [ name
acl-name ] match-order { auto | config } command but only when it does not
contain any rules.
z The rule specified in the rule comment command must have existed.
2.4.3 Configuration Examples
# Create ACL 4000 to deny frames with the 802.1p priority of 3.
<Sysname> system-view
[Sysname] acl number 4000
[Sysname-acl-ethernetframe-4000] rule deny cos 3
# Verify the configuration.
[Sysname-acl-ethernetframe-4000] display acl 4000
Ethernet frame ACL 4000, named -none-, 1 rule,
ACL's step is 5
rule 0 deny cos excellent-effort
2.5 Copying an IPv4 ACL
This feature allows you to copy an existent IPv4 ACL to generate a new one, which is of
the same type and has the same match order, match rules, rule numbering step and
descriptions as the source IPv4 ACL.
2.5.1 Configuration Prerequisites
Make sure that the source IPv4 ACL exists while the destination IPv4 ACL does not.
2.5.2 Configuration Procedure
Table 2-1 Follow these steps to copy an IPv4 ACL:
To do… Use the command… Remarks
Enter system view
system-view
Copy an existing IPv4
ACL to generate a new
one of the same type
acl copy { source-acl-number | name
source-acl-name } to { dest-acl-number
| name dest-acl-name }
Required