3com 8807 사용자 가이드

C

HAPTER

 21: ACL C

ONFIGURATION

[3Com-Ethernet2/1/1] packet-filter inbound link-group traffic-of-link 

BitTorrent (BT) is a kind of shared software for file download. Its feature is as 
follows: The more people are using it to download a file, the faster the file 
downloads. While BT download greatly reduces the burden of the download 
server, it also brings dramatic increase of download traffic on the internet. As a 
result, the network bandwidth is greatly occupied by the BT download traffic, 
which influences other network services seriously. Therefore, it is necessary to 
control the BT traffic effectively.

The purpose of the configuration is to prohibit the BT data traffic passing through 
port GE7/1/8 by configuring proper ACL rules.

c 

Figure 41   Network diagram for BT traffic control

1 Define a user-defined flow template

[SW8800] flow-template user-defined slot 7 ip-protocol bt-flag sip 0.0.0.0 

 

dport 

2 Define an advanced ACL rule

[SW8800] acl number 3000

 

[3Com-acl-adv-3000] rule 0 deny tcp bt-flag

 

[3Com-acl-adv-3000] quit 

3 Enter the port GE7/1/8 and configure BT traffic control on the port

[SW8800] interface GigabitEthernet 7/1/8

 

[3Com-GigabitEthernet7/1/8] flow-template user-defined

 

[3Com-GigabitEthernet7/1/8] packet-filter inbound ip-group 3000 rule 0 

GE7/1/8

GE7/1/1

GE7/1/2

VLAN2,

1.0.0.1/8

VLAN3,

2.0.0.1/8

PC1

PC2

GE7/1/8

GE7/1/1

GE7/1/2

VLAN2,

1.0.0.1/8

VLAN3,

2.0.0.1/8

PC1

PC2