华为核心交换机acl 允许个别IP访问与取消ACL脚本
acl number 3212rule 1 permit ip source 192.168.212.0 0.0.1.255 destination 192.168.70.1660
rule 2 permit ip source 192.168.212.0 0.0.1.255 destination 192.168.100.180
rule 69 deny ip source 192.168.212.0 0.0.1.255 destination 192.168.10.0 0.0.0.255
rule 70 deny ip source 192.168.212.0 0.0.1.255 destination 192.168.11.0 0.0.0.255
rule 71 deny ip source 192.168.212.0 0.0.1.255 destination 192.168.20.0 0.0.0.255
rule 72 deny ip source 192.168.212.0 0.0.1.255 destination 192.168.30.0 0.0.0.255
rule 73 deny ip source 192.168.212.0 0.0.1.254 destination 192.168.40.0 0.0.0.255
rule 74 deny ip source 192.168.212.0 0.0.1.255 destination 192.168.50.0 0.0.0.255
rule 75 deny ip source 192.168.212.0 0.0.1.255 destination 192.168.60.0 0.0.0.255
rule 76 deny ip source 192.168.212.0 0.0.1.255 destination 192.168.71.0 0.0.0.255
rule 77 deny ip source 192.168.212.0 0.0.1.255 destination 192.168.80.0 0.0.0.255
rule 78 deny ip source 192.168.212.0 0.0.1.255 destination 192.168.90.0 0.0.0.255
rule 79 deny ip source 192.168.212.0 0.0.1.255 destination 192.168.100.0 0.0.0.255
rule 80 deny ip source 192.168.212.0 0.0.1.255 destination 192.168.111.0 0.0.0.255
rule 81 deny ip source 192.168.212.0 0.0.1.255 destination 172.16.199.0 0.0.0.255
rule 82 deny ip source 192.168.212.0 0.0.1.255 destination 172.16.200.0 0.0.0.255
rule 83 deny ip source 192.168.212.0 0.0.1.255 destination 172.16.201.0 0.0.0.255
rule 84 deny ip source 192.168.212.0 0.0.1.255 destination 192.168.204.0 0.0.3.255
rule 85 deny ip source 192.168.212.0 0.0.1.255 destination 192.168.70.0 0.0.0.255
quit
traffic> if-match acl 3212
quit
traffic behavior 3212
permit
quit
traffic policy 3212
classifier 3212 behavior 3212
quit
vlan 212
traffic-policy 3212 inbound
quit
取消 rule 71 与72规则
acl number 3212
undo rule 71
undo rule 72
取消
vlan 212
undo traffic-policyinbound(vlan212取消ACL准入)
undo acl number 3212(Acl表号)
页:
[1]