No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

CX11x, CX31x, CX710 (Earlier Than V6.03), and CX91x Series Switch Modules V100R001C10 Configuration Guide 12

The documents describe the configuration of various services supported by the CX11x&CX31x&CX91x series switch modules The description covers configuration examples and function configurations.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Applications

Applications

This section describes the applicable scenario of ACL.

Applying ACLs to Route Filtering

ACLs can be applied to various dynamic routing protocols to filter advertised and received routes.

Enterprise users can access the Internet using the Switch Module. Some users such as R&D staff members are prohibited from accessing the Internet, and some servers such as salary query servers reject external access to ensure information security. To meet the preceding requirements, define ACL rules on the Switch Module connected to the Internet to filter packets.

Figure 12-21 Applying ACLs to route filtering

As shown in Figure 12-21, Switch Module A connects the intranet running Open Shortest Path First (OSPF) to the Internet. ACLs are defined on Switch Module A and applied to OSPF to control route advertisement and receiving.

  • Switch Module A provides routes 172.1.17.0/24, 172.1.18.0/24, and 172.1.19.0/24 for Switch Module B.

  • Switch Module C only receives routes 172.1.18.0/24.

Applying ACLs to QoS

As shown in Figure 12-22, NetworkA and NetworkB connect to NetworkC using the Switch Module, all having different requirements for voice, video, and data services. For example, NetworkA has high requirements for video services. To ensure quality of video services on NetworkA, configure an ACL on the Switch Module and reference the ACL in a traffic policy so that all the packets sent to NetworkA are processed by the Switch Module before being forwarded. Packets from other networks are forwarded without Quality of Service (QoS) guarantee because no ACL is matched.

Figure 12-22 Applying ACLs to QoS

Translation
Download
Updated: 2019-08-09

Document ID: EDOC1000041694

Views: 58274

Downloads: 3621

Average rating:
This Document Applies to these Products
Related Version
Related Documents
Share
Previous Next