Filter
Top Products
186 CHAPTER 8: USING QOS/ACL COMMANDS
Example
To display the information of the activated ACL of all interfaces, enter the
following:
<4500>display packet-filter unitid 1
packet-filter Syntax
packet-filter { inbound | outbound } { user-group acl-number [ rule
rule ] | ip-group acl-number
[ rule rule [ link-group acl-number
rule rule ] ] | link-group acl-number [ rule rule ] }
undo packet-filter { inbound | outbound } { user-group acl-number [
rule rule ] | ip-group acl-number [ rule rule [ link-group acl-number
rule rule ] ] | link-group acl-number [ rule rule ] }
View
Ethernet Port View.
Parameter
inbound: Filters the traffic received by the Ethernet port.
outbound: Performs filtering to the packets sent by the interface.
user-group acl-number: Activates user-defined ACLs. acl-number: Sequence
number of the ACL, ranging from 5000 to 5999.
ip-group acl-number: Activates the IP ACLs, including basic and advanced
ACLs.
acl-number specifies the sequence number of the ACL, ranging from 2000
to 3999.
link-group acl-number: Activates the Layer 2 ACLs. acl-number specifies the
ACL number, ranging from 4000 to 4999.
rule rule: Specifies the rule of an ACL, ranging from 0 to 65534; if not
specified, all subitems of the ACL will be activated. An ACL can have many rules.
They start at 0.
Description
Use the packet-filter command to activate the ACL on a specific interface.
Use the undo packet-filter command to disable the ACL on a specific
interface.
Example
Activate ACL 2000 for inbound traffic on interface Ethernet 1/0/1.
<4500>system-view
System View: return to User View with Ctrl+Z
[4500]interface Ethernet 1/0/1
[4500-Ethernet1/0/1]packet-filter inbound ip-group 2000
[4500-Ethernet1/0/1]