❶ pc1通过过滤MAC地址来访问服务器,PC2要通过过滤IP来访问服务器,那ACL怎么写,设备是H3C的三层交换
traffic classifier classifier_rd operator and
if-match acl 3000
#
traffic classifier classifier_hostA operator and
if-match acl 4000
#
traffic behavior behavior_rd
filter deny
#
traffic behavior behavior_hostA
filter deny
#
qos policy policy_rd
classifier classifier_rd behavior behavior_rd
#
qos policy policy_hostA
classifier classifier_hostA behavior behavior_hostA
#
acl number 3000
rule 0 deny ip source 192.168.2.0 0.0.0.255 destination X.X.X.X服务器IP
acl number 4000
rule 0 deny source-mac 001a-6427-643c ffff-ffff-ffff dest-mac <服务器MAC> ffff-ffff-ffff
#
interface GigabitEthernet0/1
qos apply policy policy_hostA inbound
#interface GigabitEthernet0/2
qos apply policy policy_rd inbound
#