3com 8807 Reference Guide

C

HAPTER

 19: VLAN-ACL C

ONFIGURATION

 C

OMMANDS

VLAN view

inbound: Mirrors inbound packets at the port.

ip-group { acl-number | acl-name }: Activates IP ACLs, including basic and 
advanced ACLs. acl-number: Sequence number of ACL, ranging from 2000 to 
3999. acl-name: Name of the ACL, which must be a character string starting with 
an English letter (a-z or A-Z), and without any space in it.

rule rule: Specifies the subitem of an active ACL, ranging from 0 to 127; if not 
specified, all subitems of ACL will be activated.

system-index index: Specifies the system index value of the rule which will be 
indexed during operation. After delivering a rule, the system automatically assigns 
a globally unique index value to the rule. When using the mirrored-to command 
to deliver a rule, you can also specify a system index value for the rule, but this 
value may change while the system is running. In general, you are not 
recommended to specify this parameter manually.

cpu: Mirrors traffic to the CPU.

Use the mirrored-to command to activate an ACL and mirror matching data 
streams in VLAN to the CPU.

Use the undo mirrored-to command to remove traffic mirroring setting.

This configuration is only applicable to the packets which match the permit rules 
in the ACL.

# Mirror to the CPU the packets which are received by a port in VLAN2 and match 
the permit rules in the ACL 2000.

<SW8800> system-view

 

System View: return to User View with Ctrl+Z.

 

[SW8800] vlan 2

 

[3Com-vlan2] mirrored-to inbound ip-group 2000 cpu 

packet-filter inbound ip-group { acl-number | acl-name } [ rule rule [ 
system-index index ] ]

undo packet-filter inbound ip-group { acl-number | acl-name } [ rule rule ]

VLAN view

inbound: Mirrors inbound packets at the port.