Brief Introduction to ACL 353
Table362 Set the Absolute Time Range
When the start-time and end-time are not configured, it will be all the time for one
day. The end time shall be later than the start time.
When end-time end-date is not configured, it will be all the time from now to the
date which can be displayed by the system. The end time shall be later than the start
time.
Defining ACL The Switch 5500 supports several types of ACL. This section introduces how to define
these ACLs.
Defining ACL by following the steps below:
1Enter the corresponding ACL view.
2Add a rule to the ACL.
You can add multiple rules to one ACL.
■If a specific time range is not defined, the ACL will always function after activated.
■During the process of defining the ACL, you can use the rule command several
times to define multiple rules for an ACL.
■If ACL is used to filter or classify the data transmitted by the hardware of the
Switch, the match order defined in the acl command will not be effective. If ACL is
used to filter or classify the data treated by the software of the Switch, the match
order of ACL’s sub-rules will be effective. Once the user specifies the match-order
of an ACL rule, he cannot modify it later.
■The default matching-order of ACL is config, that is following the order as that
configured by the user.
Define Basic ACL
The rules of the basic ACL are defined on the basis of the Layer-3 source IP address to
analyze the data packets.
You can use the following command to define basic ACL.
Perform the following configuration in the corresponding view.
Operation Command
Set the time range time-range time-name { start_time to end_time
days_of_the_week [ from start_time start_date ] [ to
end_time end_date ] | from start_time start_date [ to
end_time end_date ] | to end_time end_date }
Delete the time range undo time-range time-name [ start_time to end_time
days_of_the_week [ from start_time start_date ] [ to
end_time end_date ] | from start_time start_date [
to end_time end_date ] | to end_time end_date ]