Configuration procedure, Configuration example, Displaying acl configuration – H3C Technologies H3C S3100 Series Switches User Manual

1-14

Configuration procedure

Table 1-9 Apply an ACL to a port

Operation

Command

Description

Enter system view

system-view

—

Enter Ethernet port view

interface interface-type
interface-number

—

Apply an ACL to the port

packet-filter inbound acl-rule

Required

For description on the acl-rule
argument, refer to ACL
Command.

You cannot assign an ACL to a member port of a port group.

Configuration example

# Apply ACL 2000 to Ethernet 1/0/1 to filter the inbound packets.

<Sysname> system-view

[Sysname] interface Ethernet 1/0/1

[Sysname-Ethernet1/0/1] packet-filter inbound ip-group 2000

Displaying ACL Configuration

After the above configuration, you can execute the display commands in any view to view the ACL

running information and verify the configuration.

Table 1-10 Display ACL configuration

Operation

Command

Description

Display a configured ACL or
all the ACLs

display acl { all | acl-number }

Display a time range or all
the time ranges

display time-range { all | time-name }

Display the information
about packet filtering

display packet-filter { global | interface
interface-type interface-number | port-group
[ group-id ] | unitid unit-id | vlan [ vlan-id ] }

Display the information
about remaining ACL
resources

display acl remaining entry

Display the IPv6 ACL
template configuration
information

display ipv6-acl-template

In any view.