Configuration Access List on router huawei

Created Jul 10, 2015 15:59:35Latest reply Jul 15, 2015 13:09:05 5970 2 0 0

Help me please,

how to configure the example acces list (ACL) on routers Huawei AR201 where if I want to allow IP and deny other,


  • x
  • convention:

user_2790689  Expert   Created Jul 10, 2015 20:26:48 Helpful(0) Helpful(0)

Please wait.
  • x
  • convention:

Sophoni  Moderator   Created Jul 15, 2015 13:09:05 Helpful(0) Helpful(0)

  • #                                                                               
    acl number 2000 //Create ACL 2000 and configure a rule that permits packets with source IP addresses on the
                     network segment to pass.          
     rule 5 permit source                                     
    acl number 3005 //Configure ACL 3005 for packet filtering.      
     description deny_souce_ip_www                                                  
     rule 5 deny tcp source 0 destination-port eq www                  
     rule 10 permit tcp source 0                                        
    ip pool pool1 //Create a global IP address pool.                                                                
     gateway-list //Configure the egress gateway address for DHCP clients.     
     network mask //Configure the range of allocable IP addresses in the global IP 
                                            address pool. 
     dns-list //Specify the IP address of the DNS server for DHCP clients.                                  
    interface Serial2/0/0                                                           
     link-protocol ppp                                                              
     ip address                                     
     nat outbound 2000 //Enable NAT for hosts on network segment   
    interface GigabitEthernet0/0/1                                                  
     ip address                                           
     traffic-filter inbound acl 3005 //Apply ACL 3005 to the interface to filter packets on the interface.
     dhcp select global //Configure the interface to use the global IP address pool.            
     ip route-static Serial2/0/0 //Configure a default route.     

  • Verify the configuration.

    Run the display traffic-filter statistics command on the Router to view statistics about packets matching the ACL on the interface.

    • x
    • convention:


    You need to log in to reply to the post Login | Register

    Notice:To ensure the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but not limited to politically sensitive content, content concerning pornography, gambling, drug abuse and trafficking, content that may disclose or infringe upon others' intellectual properties, including commercial secrets, trade marks, copyrights, and patents, and personal privacy. Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see“ Privacy Policy.”
    If the attachment button is not available, update the Adobe Flash Player to the latest version!
    Fast reply Scroll to top