Configuration Access List on router huawei

Created: Jul 10, 2015 15:59:35Latest reply: Jul 15, 2015 13:09:05 6388 2 0 0

Help me please,

how to configure the example acces list (ACL) on routers Huawei AR201 where if I want to allow IP 10.10.10.0/24 and deny other,

thanks,

  • x
  • convention:

user_2790689     Created Jul 10, 2015 20:26:48 Helpful(0) Helpful(0)

Please wait.
  • x
  • convention:

Sophoni     Created Jul 15, 2015 13:09:05 Helpful(0) Helpful(0)

  • #                                                                               
     #                                                                               
    acl number 2000 //Create ACL 2000 and configure a rule that permits packets with source IP addresses on the
                     network segment 192.168.1.0/24 to pass.          
     rule 5 permit source 192.168.1.0 0.0.0.255                                     
    #                                                                               
    acl number 3005 //Configure ACL 3005 for packet filtering.      
     description deny_souce_ip_www                                                  
     rule 5 deny tcp source 192.168.1.12 0 destination-port eq www                  
     rule 10 permit tcp source 192.168.1.12 0                                        
    #                                                                               
    ip pool pool1 //Create a global IP address pool.                                                                
     gateway-list 192.168.1.2 //Configure the egress gateway address for DHCP clients.     
     network 192.168.1.0 mask 255.255.255.0 //Configure the range of allocable IP addresses in the global IP 
                                            address pool. 
     dns-list 202.106.0.20 202.106.46.151 //Specify the IP address of the DNS server for DHCP clients.                                  
    #                                                                               
    interface Serial2/0/0                                                           
     link-protocol ppp                                                              
     ip address 219.143.125.234 255.255.255.252                                     
     nat outbound 2000 //Enable NAT for hosts on network segment 192.168.1.0/24.   
    #                                                                                
    interface GigabitEthernet0/0/1                                                  
     ip address 192.168.1.2 255.255.255.0                                           
     traffic-filter inbound acl 3005 //Apply ACL 3005 to the interface to filter packets on the interface.
     dhcp select global //Configure the interface to use the global IP address pool.            
    #                                                                               
     ip route-static 0.0.0.0 0.0.0.0 Serial2/0/0 //Configure a default route.     
    #

  • Verify the configuration.

    Run the display traffic-filter statistics command on the Router to view statistics about packets matching the ACL on the interface.

    • x
    • convention:

    Reply

    Reply
    You need to log in to reply to the post Login | Register

    Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
    • Politically sensitive content
    • Content concerning pornography, gambling, and drug abuse
    • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
    Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " Privacy."
    If the attachment button is not available, update the Adobe Flash Player to the latest version!
    Fast reply Scroll to top