The traffic-filter command configures ACL-based IPv4 packet filtering in a traffic profile.
The undo traffic-filter command cancels configuration of ACL-based IPv4 packet filtering in a traffic profile.
By default, ACL-based IPv4 packet filtering is not configured in a traffic profile.
traffic-filter { inbound | outbound } acl { acl-number1 | acl-number2 | name acl-name }
undo traffic-filter { inbound | outbound }
Parameter |
Description |
Value |
|---|---|---|
inbound |
Configures ACL-based IPv4 packet filtering in the inbound direction. |
- |
outbound |
Configures ACL-based IPv4 packet filtering in the outbound direction. |
- |
acl |
Filters IPv4 packets based on a specified ACL. |
- |
acl-number |
Specifies an ACL number. |
The ACL must exist. The value is an integer
that ranges from 3000 to 3031 and from 6000 to 6031.
|
name acl-name |
Filters IPv4 packets based on a named ACL. acl-name indicates the ACL name. |
The ACL name must exist. The value range is the same as that of the acl-number parameter. |
Usage Scenario
After the traffic-filter command is executed in the traffic profile view, the device filters packets matching a specified ACL rule:
Prerequisites
An ACL rule has been created by running the acl [ number ] acl-number [ match-order { auto | config } ] or acl name acl-name acl-number [ match-order { auto | config } ] command.
Precautions
The traffic-filter command can reference an ACL with no rule configured. You can configure a rule for the ACL after running this command.
You can configure IPv4 packet filtering based on only one ACL in one direction. If a referenced ACL needs to be replaced, configure a new ACL to overwrite the original one.