3Com Switch 8800 Configuration Guide
Chapter 32 ACL Configuration
32-12
III. Configuration procedure
Note:
Only the commands concerning ACL configuration are listed here.
1)
Define the time range.
Define the time range from 8:00 to 18:00.
[SW8800] time-range 3Com 8:00 to 18:00 working-day
2)
Define inbound traffic to the wage server.
Create a name-based advanced ACL “traffic-of-payserver” and enter it.
[SW8800] acl name traffic-of-payserver advanced
Define ACL rule for the wage server.
[SW8800-acl-adv-traffic-of-payserver] rule 1 deny ip source any destination
129.110.1.2 0.0.0.0 time-range 3Com
3)
Activate the ACL.
Activate the ACL “traffic-of-payserver”.
[SW8800-Ethernet2/1/1] packet-filter inbound ip-group traffic-of-payserver
32.4.2 Basic ACL Configuration Example
I. Network requirements
With proper basic ACL configuration, during the time range from 8:00 to 18:00 everyday
the switch filters the packets from the host with source IP 10.1.1.1 (the host is
connected through the port Ethernet2/1/1 to the switch.)
II. Network diagram
Switch
#1
To router
Figure 32-2
Network diagram for basic ACL configuration
III. Configuration procedure