beautypg.com

Configuring an acl, Creating a time range, Configuring a basic acl – H3C Technologies H3C S5120 Series Switches User Manual

Page 531

background image

1-5

Configuring an ACL

Creating a Time Range

Follow these steps to create a time range:

To do…

Use the command…

Remarks

Enter system view

system-view

––

Create a time range

time-range time-range-name
{ start-time to end-time days [ from
time1 date1 ] [ to time2 date2 ] |
from time1 date1 [ to time2 date2 ]
| to time2 date2 }

Required

By default, no time range exists.

You may create a maximum of 256 time ranges.

A time range can be one of the following:

z

Periodic time range created using the time-range time-range-name start-time to end-time days

command. A time range thus created recurs periodically on the day or days of the week. A periodic

time range is active only when the system time falls within it.

z

Absolute time range created using the time-range time-range-name { from time1 date1 [ to time2

date2 ] | to time2 date2 } command. Unlike a periodic time range, a time range thus created does

not recur. For example, to create an absolute time range that is active between January 1, 2010

00:00 and December 31, 2010 23:59, you may use the time-range test from 00:00 01/01/2010 to

23:59 12/31/2010 command.

z

Compound time range created using the time-range time-range-name start-time to end-time days

{ from time1 date1 [ to time2 date2 ] | to time2 date2 } command. A time range thus created recurs

on the day or days of the week only within the specified period. For example, to create a time range

that is active from 12:00 to 14:00 on Wednesdays between January 1, 2010 00:00 and December

31, 2010 23:59, you may use the time-range test 12:00 to 14:00 wednesday from 00:00

01/01/2010 to 23:59 12/31/2010 command.

You may create individual time ranges identified with the same name. They are regarded as one time

range whose active period is the result of ORing periodic ones, ORing absolute ones, and ANDing

periodic and absolute ones.

If you do not specify the start time and date, the time range starts from the earliest time that the system

supports, namely 00:00 01/01/1970. If you do not specify the end time and date, the time range ends at

the latest time that the system supports, namely 24:00 12/31/2100.

Configuring a Basic ACL

Basic ACLs match packets based on only source IP address.

Follow these steps to configure a basic ACL:

To do…

Use the command…

Remarks

Enter system view

system-view

––

See also other documents in the category H3C Technologies Routers: