3com 8807 Reference Guide

ACL Commands

223

Related command: display flow-template, flow-template user-defined.

Example

# Define a flow template which classifies traffic by source and destination IP
addresses, source and destination TCP/UDP ports, DSCP domain in the IP packet
header.

<SW8800> system-view

System View: return to User View with Ctrl+Z.

[SW8800] flow-template user-defined slot 3 sip 0.0.0.0 dip 0.0.0.0

sport dport dscp

packet-filter

Syntax

Command Format Which Only Applies IP Group ACL

packet-filter inbound ip-group { acl-number | acl-name } [ rule rule [
system-index index ] ]

undo packet-filter inbound ip-group { acl-number | acl-name } [ rule rule ]

In VLAN view:

packet-filter inbound ip-group { acl-number | acl-name } [ rule rule ] [
system-index index ] slot slotid

undo packet-filter inbound ip-group { acl-number | acl-name } [ rule rule ] slot
slotid

Command Format Which Applies IP Group and Link Group ACL at Same
time

packet-filter inbound ip-group { acl-number | acl-name } { rule rule link-group
{ acl-number | acl-name } [ rule rule [ system-index index ] ] | link-group {
acl-number | acl-name } rule rule }

undo packet-filter inbound ip-group { acl-number | acl-name } { rule rule
link-group { acl-number | acl-name } [ rule rule ] | link-group { acl-number |
acl-name } rule rule }

Command Format Which Only Applies Link Group ACL

packet-filter inbound link-group { acl-number | acl-name } [ rule rule [
system-index index ] ]

undo packet-filter inbound link-group { acl-number | acl-name } [ rule rule ]

View

Ethernet port view, port group view

Parameter

inbound: Performs filtering to the packets received by the interface.

ip-group { acl-number | acl-name }: Activates IP ACLs, including basic and
advanced ACLs. acl-number : Sequence number of ACL, ranging from 2000 to