Manualsbrain.com
  1. Manuals
  2. Brands
  3. 3com
  4. 5500-ei pwr
  5. Reference Guide

3com 5500-ei pwr Reference Guide

Download
Page of 1314
 
1-8 
Table 1-5 Combined application of ACLs 
Combination mode 
The acl-rule argument 
Apply all the rules of an ACL that is of IP type 
(The ACL can be a basic ACL or an advanced 
ACL.) 
ip-group acl-number 
Apply a rule of an ACL that is of IP type 
ip-group acl-number rule rule-id 
Apply all the rules of a Layer 2 ACL 
link-group acl-number 
Apply a rule of a Layer 2 ACL 
link-group acl-number rule rule-id 
Apply all the rules of a user-defined ACL 
user-group acl-number 
Apply a rule of a user-defined ACL 
user-group acl-number rule rule-id 
Apply a rule of an ACL that is of IP type and a 
rule of a Layer 2 ACL 
ip-group acl-number rule rule-id link-group 
acl-number rule rule-id 
 
In 
The  ip-group  acl-number keyword specifies a basic or an advanced ACL. The acl-number 
argument ranges from 2000 to 3999. 
The link-group acl-number keyword specifies a Layer 2 ACL. The acl-number argument ranges 
from 4000 to 4999. 
The  user-group  acl-number keyword specifies a user-defined ACL. The acl-number argument 
ranges from 5000 to 5999. 
The rule rule-id keyword specifies a rule of an ACL. The rule argument ranges from 0 to 65534. If 
you do not specify this argument, all the rules of the ACL are applied. 
Description 
Use the packet-filter command to apply ACL rules on a port to filter packets.  
Use the undo packet-filter command to remove the application of ACL rules on a port.  
Examples 
# Apply all rules of basic ACL 2000 on Ethernet 1/0/1 to filter inbound packets. Here, it is assumed that 
the ACL and its rules are already configured. 
<Sysname> system-view 
System View: return to User View with Ctrl+Z. 
[Sysname] interface Ethernet1/0/1 
[Sysname-Ethernet1/0/1] packet-filter inbound ip-group 2000 
[Sysname-Ethernet1/0/1] quit 
# Apply rule 1 of Layer 2 ACL 4000 on Ethernet 1/0/2 to filter outbound packets. Here, it is assumed that 
the ACL and its rule numbered 1 are already configured. 
[Sysname] interface Ethernet 1/0/2 
[Sysname-Ethernet1/0/2] packet-filter outbound link-group 4000 rule 1 
[Sysname-Ethernet1/0/2] quit