Got it
Huawei Enterprise Support Community
Community Forums Routing & Switching
How to configure the exam...

How to configure the example access list on a Huawei AR201 router?

Latest reply: Apr 9, 2020 18:17:46 9343 4 0 0 0
View the author 1#

Hi there, everyone!


This post enquires about how to configure the example access list on Huawei routers. Please see more details further down.


Huawei AR201


ISSUE DESCRIPTION


Help me please! How to configure the example access list on a Huawei AR201 router, where if I want to allow IP 10.10.10.0/24 and deny others?


Thanks!

Like (0) Dislike (0) Favorite(0) Share Report
Previous: Access List huawei router
Next: How to Calculate the Cost of an IGP Route on Huawei AR
(0) (0)
2#
user_2790689
Created Jul 10, 2015 12:26:48

Please wait.
View more
  • x
  • convention:
(0) (0)
3#
oyshuo
Created Jul 15, 2015 05:09:05 

  • #                                                                               
 #                                                                               
acl number 2000 //Create ACL 2000 and configure a rule that permits packets with source IP addresses on the
                 network segment 192.168.1.0/24 to pass.          
 rule 5 permit source 192.168.1.0 0.0.0.255                                     
#                                                                               
acl number 3005 //Configure ACL 3005 for packet filtering.      
 description deny_souce_ip_www                                                  
 rule 5 deny tcp source 192.168.1.12 0 destination-port eq www                  
 rule 10 permit tcp source 192.168.1.12 0                                        
#                                                                               
ip pool pool1 //Create a global IP address pool.                                                                
 gateway-list 192.168.1.2 //Configure the egress gateway address for DHCP clients.     
 network 192.168.1.0 mask 255.255.255.0 //Configure the range of allocable IP addresses in the global IP 
                                        address pool. 
 dns-list 202.106.0.20 202.106.46.151 //Specify the IP address of the DNS server for DHCP clients.                                  
#                                                                               
interface Serial2/0/0                                                           
 link-protocol ppp                                                              
 ip address 219.143.125.234 255.255.255.252                                     
 nat outbound 2000 //Enable NAT for hosts on network segment 192.168.1.0/24.   
#                                                                                
interface GigabitEthernet0/0/1                                                  
 ip address 192.168.1.2 255.255.255.0                                           
 traffic-filter inbound acl 3005 //Apply ACL 3005 to the interface to filter packets on the interface.
 dhcp select global //Configure the interface to use the global IP address pool.            
#                                                                               
 ip route-static 0.0.0.0 0.0.0.0 Serial2/0/0 //Configure a default route.     
#

  • Verify the configuration.

    Run the display traffic-filter statistics command on the Router to view statistics about packets matching the ACL on the interface.

    •
    View more
    • x
    • convention:
    (0) (0)
    4#
    GladysP
    Created Apr 9, 2020 18:17:38

    amazing job, thanks for sharing!
    View more
    • x
    • convention:
    (1) (0)
    5#
    GladysP
    Created Apr 9, 2020 18:17:46

    very useful, thanks!!
    View more
    • x
    • convention:
    Back to list

    Comment

    Advanced
    B Color Image Link Quote Code Smilies
    You need to log in to comment to the post Login | Register
    Comment

    Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
    • Politically sensitive content
    • Content concerning pornography, gambling, and drug abuse
    • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
    Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

    My Followers

    Login and enjoy all the member benefits

    Login
    Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
    Huawei Enterprise Huawei Carrier Forum Training & Certification

    Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

    APP

    Block
    Are you sure to block this user?
    Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
    Reminder
    Please bind your phone number to obtain invitation bonus.