H3C LS-3100-52P-OVS-H3 Operation Manual - page 1531
2-8
z
The source IPv4 ACL and the destination IPv4 ACL must be of the same type.
z
The destination ACL does not take the name of the source IPv4 ACL.
Displaying and Maintaining IPv4 ACLs
To do...
Use the command…
Remarks
Display information about one or all IPv4
ACLs
display acl { acl-number | all |
name acl-name }
Available in any
view
Display information about ACL uses of a
switch
display acl resource
Available in any
view
Display the configuration and state of a
specified or all time ranges
display time-range
{ time-range-name| all}
Available in any
view
Clear statistics about a specified or all
IPv4 ACLs that are referenced by upper
layer software
reset acl counter { acl-number |
all| name acl-name }
Available in user
view
IPv4 ACL Configuration Example
Network Requirements
As shown in
Figure 2-1
, a company interconnects its departments through the switch.
Configure an ACL to deny access of all departments but the President’s office to the salary query server
during office hours (from 8:00 to 18:00) in working days.
Network Diagram
Figure 2-1 Network diagram for IPv4 ACL configuration
GE1/0/4
GE1/0/1
GE1/0/2
GE1/0/3
192.168.4.1
Switch
R&D department
Marketing department
Salary query server
President`s office
192.168.2.0/24
192.168.3.0/24
192.168.1.0/24