Brief Introduction to ACL
137
Activate the ACL 3000.
[4500-GigabitEthernet1/0/50]
packet-filter inbound ip-group 3000 rule
1
Basic ACL Configuration
Example
Networking Requirements
Using basic ACL, filter the packet whose source IP address is 10.1.1.1 during the
time range 8:00 ~ 18:00 every day. The host connects port GigabitEthernet1/0/50
of the Switch.
Networking Diagram
Figure 37
Access Control Configuration Example
Configuration Procedure
In the following configurations, only the commands related to ACL configurations
are listed.
1
Define the time range
Define time range from 8:00 to 18:00.
[4500]
time-range 3Com 8:00 to 18:00 daily
2
Define the ACL for packet which source IP is 10.1.1.1.
a
Enter the number basic ACL, number as 2000.
[4500]
acl number 2000
b
Define the rules for packet which source IP is 10.1.1.1.
[4500-acl-basic-2000]
rule 1 deny source 10.1.1.1 0 time-range 3Com
3
Activate ACL.
Activate the ACL 2000.
[4500-GigabitEthernet1/0/50]
packet-filter inbound ip-group 2000
Link ACL Configuration
Example
Networking Requirements
Using Link ACL, filter the packet whose source MAC address is 00e0-fc01-0101
and destination MAC address is 00e0-fc01-0303 during the time range 8:00 ~
18:00 every day. The ACL is activated on GigabitEthernet1/0/50.
Switch
#1
connect to Router
Summary of Contents for 400 Family
Page 12: ......
Page 16: ...14 ABOUT THIS GUIDE ...
Page 58: ...56 CHAPTER 2 PORT OPERATION ...
Page 68: ...66 CHAPTER 3 VLAN OPERATION ...
Page 98: ...96 CHAPTER 5 NETWORK PROTOCOL OPERATION ...
Page 124: ...122 CHAPTER 6 IP ROUTING PROTOCOL OPERATION ...
Page 156: ...154 CHAPTER 8 ACL CONFIGURATION ...
Page 218: ...216 CHAPTER 11 802 1X CONFIGURATION ...
Page 298: ...296 CHAPTER 13 PASSWORD CONTROL CONFIGURATION OPERATIONS ...
Page 336: ...334 APPENDIX B RADIUS SERVER AND RADIUS CLIENT SETUP ...