beautypg.com

Acl configuration examples, Network requirements, Configuration procedure – H3C Technologies H3C S5120 Series Switches User Manual

Page 537

background image

1-11

ACL Configuration Examples

ACL Configuration Examples

Network requirements

As shown in

Figure 1-1

, apply an ACL to the inbound direction of interface GigabitEthernet 1/0/1 on

Device A so that the interface denies IPv4 packets sourced from Host A from 8:00 to 18:00 everyday.

Figure 1-1 Network diagram for applying an ACL to an interface for filtering

IP network

GE1/0/1

Host A

192.168.1.2/24

Device A

Host B

192.168.1.3/24

Configuration procedure

# Create a time range named study, setting it to become active from 08:00 to 18:00 everyday.

system-view

[DeviceA] time-range study 8:00 to 18:00 daily

# Create basic ACL 2009.

[DeviceA] acl number 2009

# Create a basic ACL rule to deny packets sourced from 192.168.1.2/32 during time range study.

[DeviceA-acl-basic-2009] rule deny source 192.168.1.2 0 time-range study

[DeviceA-acl-basic-2009] quit

# Apply ACL 2009 to the inbound direction of interface GigabitEthernet 1/0/1.

[DeviceA] interface gigabitethernet 1/0/1

[DeviceA-GigabitEthernet1/0/1] packet-filter 2009 inbound

See also other documents in the category H3C Technologies Routers: