Installation manual

ManualsBrandsQuidway ManualsComputer equipmentS3000-EI Series

111

112

113

114

115

116

117

118

119

120

Operation Manual - QoS/ACL

Quidway S3000-EI Series Ethernet Switches Chapter 1

ACL Configuration

Huawei Technologies Proprietary

1-5

c ACL Table 1-4 Defining the basi

Operation Command

Enter basic ACL vie

system view)

w(from acl { number acl-number | name acl-name

basic } [ match-order { config | auto } ]

add a sub-item to the ACL(from

rule [ rule-id ] { pe

basic ACL view)

time-range name ]*

rmit | deny } [ source

{ source-addr wildcard | any } | fragment |

delete a sub-item from the

ACL(from basic ACL view)

undo rule rule-id [ source | fragment |

time-range ]*

Delete on all the undo acl { nu mber | name e ACL or

ACL(from system view)

mber acl-nu

acl-name | all }

II.

a destin s, the TCP or UDP port number in

a f packet ype of Service), IP and DSCP

You can use the following command to define advanced ACL.

n in corresponding view.

Defining the advanced ACL

he rules of the classification for a

ttributes such as source and

dvanced ACL are defined on the basis of the

ation IP addres

se and packet priority to process th

nalyses of three kinds o

e data packets. The advanced ACL supports the

priorities, ToS (T

priorities

Perform the following configuratio

Table 1-5 Defining the advanced ACL

Operation Command

Enter advanced ACL

view(from system view)

acl { number acl-number | name acl-name

advanced } [ match-order { config | auto } ]

Add a sub-item to the

{ source-addr wildcard | any } ]

{ dest-addr dest-mask | any } ] [ source-por

ACL(from advanced ACL

view)

port1 [ port2 ] ] [ destinati

[ port2 ] ] [ icmp-type type

rule [ rule-id ] { permit | deny } protocol [source

[ destination

t operator

on-port operator port1

code ] [ established ]

[ [ precedence precedence | tos tos ]* | dscp dscp ]

nt ] [ time-range name ]

[ fragme

Delete from

the ACL(from advanced

undo rule rule-id [ destination-port |

a sub-item

ACL view)

destination |

source-port | time-range | tos ]*

Delete one ACL or all the

ACL(from system view)

undo acl { number acl-number | name acl-name | all }

The advanced ACL is identifie

Note that, the port1 and port e TCP or UDP ports

used by various high-layer applications. For some common port numbers, you can use

d with the numbers ranging from 3000 to 3999.

2 in the above command specify th