beautypg.com

Configuring acls, Overview – H3C Technologies H3C MSR 50 User Manual

Page 258

background image

237

Configuring ACLs

The Web interface provides the following ACL configuration functions:

Configuring an IPv4 ACL

Configuring a rule for a basic IPv4 ACL

Configuring a rule for an advanced IPv4 ACL

Configuring a rule for an Ethernet frame header ACL

Overview

An access control list (ACL) is a set of rules (or permit or deny statements) for identifying traffic based on

criteria such as source IP address, destination IP address, and port number.
ACLs are essentially used for packet filtering. A packet filter drops packets that match a deny rule and
permits packets that match a permit rule. ACLs are also widely used by many modules (for example, QoS

and IP routing) for traffic identification.
IPv4 ACLs include the following categories, as shown in

Table 112

.

Table 112 IPv4 ACL categories

Category

ACL number

Match criteria

Basic ACLs

2000 to 2999

Source IPv4 address

Advanced ACLs 3000 to 3999

Source/destination IPv4 address, protocol number, and other Layer
3 and Layer 4 header fields

Ethernet frame
header ACLs

4000 to 4999

Layer 2 header fields, such as source and destination MAC
addresses, 802.1p priority, and link layer protocol type

For more information about IPv4 ACL, see ACL and QoS Configuration Guide in H3C MSR Series
Routers Configuration Guides (V5).

This manual is related to the following products:
See also other documents in the category H3C Technologies Routers: