Support User Manuals

D-Link DES-7200 Refrigerator User Manual

Open as PDF

of 1968

DES-7200 Configuration Guide Chapter 1 Access Control List

Configuration

1-32

Step 2: Define ACL

! Define IP extended ACL (vlan_access1 and vlan_access2)

SwitchB(config)#ip access-list extended vlan_access1

! Prohibit finance department and market department from accessing the development

department

SwitchB(config-ext-nacl)#deny ip 192.168.2.0 0.0.0.255 192.168.1.0 0.0.0.255

SwitchB(config-ext-nacl)#deny ip 192.168.3.0 0.0.0.255 192.168.1.0 0.0.0.255

SwitchB(config-ext-nacl)#permit ip any any

SwitchB(config)#ip access-list extended vlan_access2

! Prohibit development department and market department from accessing the finance

department

SwitchB(config-ext-nacl)#deny ip 192.168.1.0 0.0.0.255 192.168.2.0 0.0.0.255

SwitchB(config-ext-nacl)#deny ip 192.168.3.0 0.0.0.255 192.168.2.0 0.0.0.255

SwitchB(config-ext-nacl)#permit ip any any

SwitchB(config-ext-nacl)#exit

Step 3: Apply ACLs of "vlan_access1" and "vlan-access2" to the corresponding

interfaces

! Configure G0/22 as a trunk port and apply vlan_access1

SwitchB(config)#interface GigabitEthernet 0/22

SwitchB(config-if)#switchport mode trunk

SwitchB(config-if)#ip access-group vlan_access1 in

! Configure G0/23 as a trunk port and apply vlan_access2

SwitchB(config)# interface GigabitEthernet 0/23

SwitchB(config-if)# switchport mode trunk

SwitchB(config-if)# ip access-group vlan_access2 in

! Configure G0/24 as a trunk port

SwitchB(config)#interface GigabitEthernet 0/24

SwitchB(config-if)#switchport mode trunk

! Configure IP address of SVI2.

SwitchB(config)#interface vlan 2

SwitchB(config-if)#ip address 192.168.1.100 255.255.255.0

! Configure IP address of SVI3.

SwitchB(config)#interface vlan 3

SwitchB(config-if)#ip address 192.168.2.100 255.255.255.0

! Configure IP address of SVI4.

SwitchB(config)#interface vlan 4

SwitchB(config-if)#ip address 192.168.4.1 255.255.255.0

Step 4: Specify time range

! Define the time range of 9:00-18:00 from Monday to Friday

SwitchB#configure terminal

SwitchB(config)#time-range worktime

SwitchB(config-time-range)#periodic weekdays 9:00 to 18:00

Step 5: Specify the traffic rule of development department

SwitchB#configure terminal

! Create the extended ACL of "yanfa" in configuration mode

previous next