华为5700交换机使用acl封80端口
时间:2019-04-11 来源:未知 投稿:admin 点击:次
acl number 3000
rule 1 deny tcp destination-port eq www //全局封80
rule deny tcp destination 119.90.126.29 0 destination-port eq 80 //封某一个80地址的80端口
rule deny tcp destination 119.90.126.0 0.0.0.255 destination-port eq 80 //封整个C段的80端口
traffic classifier www
if-match acl 3000
q
traffic behavior www
deny
q
traffic policy www
classifier www behavior www
inter x0/1/1
traffic-policy www inbound
rule 1 deny tcp destination-port eq www //全局封80
rule deny tcp destination 119.90.126.29 0 destination-port eq 80 //封某一个80地址的80端口
rule deny tcp destination 119.90.126.0 0.0.0.255 destination-port eq 80 //封整个C段的80端口
traffic classifier www
if-match acl 3000
q
traffic behavior www
deny
q
traffic policy www
classifier www behavior www
inter x0/1/1
traffic-policy www inbound
如果您的问题仍未解决,还可以加入服务器在线技术交流QQ群:8017413寻求帮助。
相关内容