Filter
Top Products
1-11
Configuration procedure
Follow these steps to apply ACL rules to ports in a VLAN:
To do... Use the command... Remarks
Enter system view
system-view
—
Apply ACL rules to ports in a
VLAN
packet-filter vlan vlan-id
{ inbound | outbound }
acl-rule
Required
For information about acl-rule,
refer to ACL Commands.
Configuration example
# Apply ACL 2000 to all ports of VLAN 1 in the inbound direction to filter packets.
<Sysname> system-view
[Sysname] packet-filter vlan 1 inbound ip-group 2000
Displaying and Maintaining ACL Configuration
To do... Use the command... Remarks
Display a configured ACL or all
the ACLs
display acl { all | acl-number }
Display a time range or all the
time ranges
display time-range { all | time-name }
Display information about
packet filtering
display packet-filter { interface
interface-type interface-number | unitid
unit-id }
Display information about ACL
resources
display drv qacl_resource
Available in any
view
Examples for Upper-layer Software Referencing ACLs
Example for Controlling Telnet Login Users by Source IP
Network requirements
Apply an ACL to permit users with the source IP address of 10.110.100.52 to telnet to the switch.
Network diagram
Figure 1-1 Network diagram for controlling Telnet login users by source IP
Switch
PC
10.110.100.52
Internet