admin 发表于 2021-2-5 17:40:49

HCNA-42 配置高级的访问控制列表ACL3000

HCNA-42 配置高级的访问控制列表ACL3000
<Huawei>system-viewsysnamer1interfaceloopback 0 ipaddress 1.1.1.1 32interfaceGigabitEthernet 0/0/0ipaddress 172.16.13.1 24 quitospf1area0authentication-modemd5 1 cipher admin1234network1.1.1.1 0.0.0.0network172.16.13.0 0.0.0.255return <Huawei>system-viewsysnamer2interfaceloopback 0ipaddress 2.2.2.2 32interfaceGigabitEthernet 0/0/0ipaddress 172.16.23.2 24 quitospf1area0authentication-modemd5 1 cipher admin1234network2.2.2.2 0.0.0.0network172.16.23.0 0.0.0.255return<Huawei>system-viewsysnamer3interfaceloopback 0ipaddress 3.3.3.3 32interfaceGigabitEthernet 0/0/0ipaddress 172.16.13.3 24interfaceGigabitEthernet 0/0/1ipaddress 172.16.23.3 24 interfaceGigabitEthernet 0/0/2ipaddress 172.16.34.3 24quitospf1area0network3.3.3.3 0.0.0.0network172.16.13.0 0.0.0.255network172.16.23.0 0.0.0.255network172.16.34.0 0.0.0.255authentication-modemd5 1 cipher admin1234return <Huawei>system-viewsysnamer4interfaceloopback 0ipaddress 4.4.4.4 32interfaceloopback 1ipaddress 40.40.40.40 32interfaceGigabitEthernet 0/0/0ipaddress 172.16.34.4 24 quitospf1area0authentication-modemd5 1 cipher admin1234network4.4.4.4 0.0.0.0network40.40.40.40 0.0.0.0network172.16.34.0 0.0.0.255returnuser-interfacevty 0 4authentication-modeaaaaaalocal-userzurkj password cipher admin1234 privilege level 15local-userzurkj service-type telnetreturnacl3000//配置高级ACL 3000step10//配置步长为10rulepermit ipsource 1.1.1.1 0 destination4.4.4.4 0//规则允许源IP1.1.1.1访问目的IP4.4.4.4ldisplayacl all//查看所有ACL Total quantity of nonempty ACL number is 1 AdvancedACL 3000, 1 ruleAcl'sstep is 10 rule 10 permit ip source 1.1.1.1 0 destination4.4.4.4 0 user-interfacevty 0 4//用户界面 虚拟电传终端 同时5个访问acl3000 inbound//调用ACL3000 入站方向
页: [1]
查看完整版本: HCNA-42 配置高级的访问控制列表ACL3000

公司网站