3com 8807 User Guide
178
C
HAPTER
21: ACL C
ONFIGURATION
2 Define inbound traffic to the wage server.
# Create a name-based advanced ACL "traffic-of-payserver" and enter it.
[SW8800] acl name traffic-of-payserver advanced
# Define ACL rule for the wage server.
[3Com-acl-adv-traffic-of-payserver] rule 1 deny ip source any destination
129.110.1.2 0.0.0.0 time-range 3Com
3 Activate the ACL.
# Activate the ACL "traffic-of-payserver".
[3Com-Ethernet2/1/1] packet-filter inbound ip-group traffic-of-payserver
Basic ACL Configuration
Example
Network requirements
With proper basic ACL configuration, during the time range from 8:00 to 18:00
everyday the switch filters the packets from the host with source IP 10.1.1.1 (the
host is connected through the port Ethernet2/1/1 to the switch.)
everyday the switch filters the packets from the host with source IP 10.1.1.1 (the
host is connected through the port Ethernet2/1/1 to the switch.)
Network diagram
Figure 39 Network diagram for basic ACL configuration
Configuration procedure
n
Only the commands concerning ACL configuration are listed here.
1 Define the time range.
# Define the time range from 8:00 to 18:00.
[SW8800] time-range 3Com 8:00 to 18:00 daily
2 Define the traffic with source IP 10.1.1.1.
# Create a name-based basic ACL "traffic-of-host" and enter it.
[SW8800] acl name traffic-of-host basic
# Define ACL rule for source IP 10.1.1.1.
[3Com-acl-basic-traffic-of-host] rule 1 deny source 10.1.1.1 0 time-range 3C
om
3 Activate the ACL.
# Activate the ACL "traffic-of-host".
Switch
#1
To router