3com 3.01.01 用户手册
ACL Configuration Example
215
Figure 2 Networking for basic ACL configuration
Only the commands concerning ACL configuration are listed.
1 Define the time range from 8:00 to 18:00.
[SW8800]time-range 3com 8:00 to 18:00 daily
2 Define the traffic with source IP 10.1.1.1.
Create a name-based basic ACL "traffic-of-host" and enter it.
[SW8800]acl name traffic-of-host basic
Define ACL rule for source IP 10.1.1.1.
[SW8800-acl-basic-traffic-of-host]rule 1 deny ip source 10.1.1.1 0
time-range 3com
3 Activate the ACL "traffic-of-host".
[SW8800-GigabitEthernet2/1/1]packet-filter inbound ip-group
traffic-of-host
L2 ACL Configuration
Example
With proper L2 ACL configuration, during the time range from 8:00 to 18:00
everyday the switch filters the packets with source MAC 00e0-fc01-0101 and
destination MAC 00e0-fc01-0303 (configuring at the port GigabitEthernet2/1/1 to
the switch.)
everyday the switch filters the packets with source MAC 00e0-fc01-0101 and
destination MAC 00e0-fc01-0303 (configuring at the port GigabitEthernet2/1/1 to
the switch.)
Figure 3 Networking for L2 ACL Configuration
Only the commands concerning ACL configuration are listed.
1 Define the time range from 8:00 to 18:00.
[SW8800]time-range 3com 8:00 to 18:00 daily
2 Define the traffic with source MAC 00e0-fc01-0101 and destination MAC
00e0-fc01-0303.
Create a name-based L2 ACL "traffic-of-link" and enter it.
[SW8800]acl name traffic-of-link link
Switch
#1
To router
Switch
#1
To router