3com 5500G ユーザーズマニュアル
22
ACL C
ONFIGURATION
G
UIDE
Configuring Basic
ACLs
ACLs
Basic ACLs filter packets based on only source IP address.
The numbers of basic ACLs range from 2000 to 2999.
Network Diagram
Figure 58 Network diagram for basic ACL configuration
Networking and
Configuration
Requirements
PC 1 and PC 2 connect to the switch through Ethernet 1/0/1 (assuming that the
switch is a Switch 5500). PC 1’s IP address is 10.1.1.1. Apply an ACL on Ethernet
1/0/1 to deny packets with the source IP address of 10.1.1.1 from 8:00 to 18:00
everyday.
switch is a Switch 5500). PC 1’s IP address is 10.1.1.1. Apply an ACL on Ethernet
1/0/1 to deny packets with the source IP address of 10.1.1.1 from 8:00 to 18:00
everyday.
Applicable Products
Configuration Procedure
# Define a periodic time range that is from 8:00 to 18:00 everyday.
<3Com> system-view
[3Com] time-range test 8:00 to 18:00 daily
# Define basic ACL 2000 to filter packets with the source IP address of 10.1.1.1.
[3Com] acl number 2000
[3Com-acl-basic-2000] rule 1 deny source 10.1.1.1 0 time-range test
[3Com-acl-basic-2000] quit
# Apply ACL 2000 to Ethernet 1/0/1.
[3Com] interface Ethernet 1/0/1
[3Com-Ethernet1/0/1] packet-filter inbound ip-group 2000
Switch
Eth1 /0/1
PC 1
10 .1 .1.1
PC 2
To the router
Product series
Software version Hardware version
Switch 5500
Release V03.02.04
All versions
Switch 5500G
Release V03.02.04
All versions
Switch 4500
Release V03.03.00
All versions