Acl configuration task list, Configuring an acl, Configuring a time range – H3C Technologies H3C S10500 Series Switches User Manual
Page 12
4
To avoids the risks, the H3C ACL implementation:
•
Filters all fragments by default, including non-first fragments.
•
Allows for matching criteria modification, for example, filters non-first fragments only.
ACL configuration task list
Complete the following tasks to configure an ACL:
Task Remarks
Optional
Applicable to IPv4 and IPv6 ACLs.
Configuring an Ethernet frame header ACL
Required
Configure at least one task.
Optional
Applicable to IPv4 and IPv6.
Optional
Applicable to IPv4 and IPv6.
Configuring an ACL
Configuring a time range
You can implement ACL rules based on the time of day by applying a time range to them. A time-based
ACL rule only takes effect in any time periods specified by the time range.
The following basic types of time range are available:
•
Periodic time range—Recurs periodically on a day or days of the week.
•
Absolute time range—Represents only a period of time and does not recur.
You can create multiple statements in a time range. The active period of a time range is calculated as
follows:
1.
Combining all periodic statements.
2.
Combining all absolute statements.
3.
Taking the intersection of the two statement sets as the active period of the time range.
You can create a maximum of 256 time ranges, each with a maximum of 32 periodic statements and 12
absolute statements.
Follow these steps to configure a time range:
To do…
Use the command…
Remarks
Enter system view
system-view
––