beautypg.com

Acfp collaboration rules – H3C Technologies H3C MSR 50 User Manual

Page 14

background image

7

ACFP collaboration rules

ACFP collaboration rules refer to the collaboration rules that the ACFP client sends to the ACFP server for

application. Collaboration rules are divided into the following categories:

Monitoring rules—Used to monitor, analyze, and process packets to be sent to the ACFP client. Rule
actions include redirect and mirror.

Filtering rules—Used to determine which packets to deny and which packets to permit. Rule actions
include deny and permit.

Restricting rules—Used to determine the rate at which packets are to be restricted. The rule action
is rate.

Rule information is described as follows:

ClientID—ACFP client identifier.

Policy index

Rule index—Rule identifier.

Status—Whether the rule is applied successfully.

Action—Rule action: mirror, redirect, deny, permit, or rate limit.

Match all packets—Whether to use the rule for all packets. If yes, the matching that follows does not
need to be performed.

Source MAC address

Destination MAC address

Starting VLAN ID

Ending VLAN ID

Protocol number in the IP header

Source IP address

Wildcard mask of the source IP address

Source port number operator—Operator for the source port number: equal to, not equal to,
greater than, less than, or greater than and less than. The ending source port number that follows

takes effect only when the operator is greater than and less than. The source port number of a

matched packet is greater than the starting source port number and less than the ending source port

number.

Starting source port number

Ending source port number

Destination IP address

Wildcard mask of destination IP address

Destination port number operator—Operator for the destination port number: equal to, not equal
to, greater than, less than, or greater than and less than. The ending destination port number that

follows takes effect only when the operator is greater than and less than. The destination port

number of a matched packet must be greater than the starting destination port number and less
than the ending destination port number.

Starting destination port number

Ending destination port number

Pro—Protocol type: GRE, ICMP, IGMP, OSPF, TCP, UDP, or IP.

IP precedence—Packet precedence in the range of 0 to 7.

This manual is related to the following products:
See also other documents in the category H3C Technologies Routers: