Installation manual

ManualsBrandsQuidway ManualsComputer equipmentS3000-EI Series

111

112

113

114

115

116

117

118

119

120

Operation Manual - QoS/ACL

Quidway S3000-EI Series Ethernet Switches Chapter 1

ACL Configuration

Huawei Technologies Proprietary

1-1

A series of matching rules are required for the network devices to identify the packets to

e data packets with a series of matching rules, including source

in some other cases

different ranges of packets. When matching a data packet with the access control rule,

I. data transmitted by the hardware

h hardware.

wing table.

Chapter 1 ACL Configuration

1.1 Brief Introduction to ACL

1.1.1 ACL Overview

be filtered. After identifying the packets, the switch can permit or deny them to pass

through according to the defined policy. Access Control List (ACL) is used to implement

such functions.

ACL classifies th

address, destination address and port number, etc. The switch verifies the data packets

with the rules in ACL and determines to forward or discard them.

The data packet matching rules defined by ACL can also be called

requiring traffic classification, such as defining traffic classification for QoS.

An access control rule includes several statements. Different statements specify

the issue of match-order arises.

Case of filtering or classifying

ACL can be used to filter or classify the data transmitted by the hardware of switch. In

this case, the match order of ACL’s sub-rules is determined by the switc

The match order defined by the user can’t be effective.

Due the chips installed, the hardware match order of ACL’s sub-rule is different in

different switch models. The details are listed in the follo

Table 1-1 Hardware match order of ACL’s sub-rule

Switch Hardware match order of ACL’s sub-rule

S3000-EI series

An ACL is configured w

sub-rule will be matche

ith multiple sub-rules. The latest

d first.

T s: ACL c

smitted by the hardware. etc.

II.

fy the data treated by the software of switch. In this

case, the match order of ACL’s sub-rules can be determined by the user. There are two

match-orders: config (by following the user-defined configuration order when matching

he case include ited by QoS function, ACL used for filter the packet

tran

Case of filtering or classifying data transmitted by the software

ACL can be used to filter or classi