Configuration Access List on router huawei

Latest reply: Jul 15, 2015 13:09:05 6976 2 0 0

Help me please,

how to configure the example acces list (ACL) on routers Huawei AR201 where if I want to allow IP and deny other,


  • x
  • convention:

Created Jul 10, 2015 20:26:48 Helpful(0) Helpful(0)

Please wait.
  • x
  • convention:

Created Jul 15, 2015 13:09:05 Helpful(0) Helpful(0)

  • #                                                                               
    acl number 2000 //Create ACL 2000 and configure a rule that permits packets with source IP addresses on the
                     network segment to pass.          
     rule 5 permit source                                     
    acl number 3005 //Configure ACL 3005 for packet filtering.      
     description deny_souce_ip_www                                                  
     rule 5 deny tcp source 0 destination-port eq www                  
     rule 10 permit tcp source 0                                        
    ip pool pool1 //Create a global IP address pool.                                                                
     gateway-list //Configure the egress gateway address for DHCP clients.     
     network mask //Configure the range of allocable IP addresses in the global IP 
                                            address pool. 
     dns-list //Specify the IP address of the DNS server for DHCP clients.                                  
    interface Serial2/0/0                                                           
     link-protocol ppp                                                              
     ip address                                     
     nat outbound 2000 //Enable NAT for hosts on network segment   
    interface GigabitEthernet0/0/1                                                  
     ip address                                           
     traffic-filter inbound acl 3005 //Apply ACL 3005 to the interface to filter packets on the interface.
     dhcp select global //Configure the interface to use the global IP address pool.            
     ip route-static Serial2/0/0 //Configure a default route.     

  • Verify the configuration.

    Run the display traffic-filter statistics command on the Router to view statistics about packets matching the ACL on the interface.

    • x
    • convention:


    You need to log in to reply to the post Login | Register

    Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
    • Politically sensitive content
    • Content concerning pornography, gambling, and drug abuse
    • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
    Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " Privacy."
    If the attachment button is not available, update the Adobe Flash Player to the latest version!

    Login and enjoy all the member benefits

    Fast reply Scroll to top