Installation manual

ManualsBrandsQuidway ManualsComputer equipmentS3000-EI Series

131

132

133

134

135

136

137

138

139

140

Command Manual - QoS/ACL

Quidway S3000-EI Series Ethernet Switches Chapter 1 ACL Commands

Huawei Technologies Proprietary

1-9

parameter takes ip, it means all the IP protocols. This parameter can be 1 ~ 255 if

indicated by digit.

source-addr wildcard | any: source-addr wildcard is the source IP address and source

address wildcard, expressed in dotted decimal notation. any represents any source

address.

dest-addr wildcard | any: dest-addr wildcard is the destination IP address and

destination address wildcard, expressed in dotted decimal notation. any represents

any destination address.

source-port operator port1 [ port2 ]: This parameter is to define the source TCP or

UDP port number. Here, operator represents port operation character, including eq

(equal to), gt (greater than), lt (less than), neq (not equal to), and range (in certain

range). Note: This parameter is available only when protocol parameter takes TCP or

UDP. port1 [ port2 ]: TCP or UDP port number of packets, expressed with characters or

numbers. The numbers are in the range of 0 to 65535 and refer to mnemonic symbol

table for character values.

destination-port operator port1 [ port2 ]: This parameter is to define the destination

TCP or UDP port number. The meaning of operator port1 [ port2 ] is same as upper

parameter.

icmp-type type code: Used when protocol is specified as icmp. type code specifies an

ICMP packet. type specifies the ICMP packet type with a number in the range of 0 to

255 or characters. code, ranging from 0 to 255, is used for icmp when ICMP packet

type are not specified with characters.

established: Used when protocol is tcp to indicate that the rule takes effect on the first

SYN packet to establish TCP connection.

precedence precedence: Specifies IP precedence with a number in the range of 0 to 7

or a name.

tos tos: Classifies the data packets with a number in the range of 0 to 15 or a name.

dscp dscp: Classifies the data packets with a number in the range of 0 to 63 or a

name.

fragment: Indicates that the rule takes effect on fragmented packets only and will be

ignored for other packets.

z The parameter of link ACL

protocol: Protocol carried by an Ethernet frame, which can be ip, arp, rarp,

pppoe-control, or pppoe-data.

cos vlan-pri : 802.1p priority, ranging from 0 to 7.

ingress { { { source-vlan-id | source-mac-addr source-mac-wildcard } | interface

{ interface-name | interface-type interface-num } }* | any }: Source information of a

data packet. [ source-vlan-id ] specifies the source VLAN of the packet, and

[ source-mac-addr source-mac-wildcard ] specifies the source MAC address and MAC