3com 5500-ei pwr Instrução De Instalação

 

1-10 

A user-defined ACL can be numbered from 5000 to 5999. 

To configure a time range-based user-defined ACL rule, you need to define the 

corresponding time ranges first. For information about time range configuration, refer to 

Follow these steps to define a user-defined ACL rule: 

Enter system view  

system-view 

— 

Create a user-defined 
ACL and enter 
user-defined ACL 
view 

acl number acl-number 

Required 

Define an ACL rule 

rule [ rule-id ] { permit | deny } 
[ rule-string rule-mask offset ] 
&<1-8> [ time-range time-name ]

Required 

For information about 
rule-string, refer to ACL 
Commands. 

Define a comment for 
the ACL rule 

rule rule-id comment text 

Optional 

No description by default 

Define a description 
for the ACL 

description text 

Optional 

No description by default 

 

When configuring a rule that matches specific fields of packets, take the following two 

items into account: 

z 

If VLAN-VPN is not enabled, each packet in the switch carries one VLAN tag, which is 

4 bytes long. 

z 

If VLAN-VPN is enabled on a port, each packet in the switch carries two VLAN tags, 

which is 8 bytes long. 

 

Note that: 

z 

You can modify any existent rule of a user-defined ACL. If you modify only the time 

range and/or action, the unmodified parts of the rule remain the same. If you modify the 

rule-string rule-mask offset combinations, however, the new combinations will replace 

all of the original ones. 

z 

If you do not specify the rule-id argument when creating an ACL rule, the rule will be 

numbered automatically. If the ACL has no rules, the rule is numbered 0; otherwise, the 

number of the rule will be the greatest rule number plus one. If the current greatest rule