Operation Manual – ACLH3C S5600 Series Ethernet Switches Chapter 1 ACL Configuration1-6 system-view[Sysname] time-range test from 15:00 1/28/2006 to 15:00 1/28/2008[Sysname] display time-range testCurrent time is 13:30:32 Apr/16/2005 SaturdayTime-range : test ( Inactive )From 15:00 Jan/28/2006 to 15:00 Jan/28/20081.2.2 Configuring Basic ACLA basic ACL filters packets based on their source IP addresses.A basic ACL can be numbered from 2000 to 2999.I. Configuration prerequisitesz To configure a time range-based basic ACL rule, you need to create thecorresponding time range first. For information about time range configuration,refer to Configuring Time Range.z The source IP addresses based on which the ACL filters packets are determined.II. Configuration procedureFollow these steps to define a basic ACL rule:To do... Use the command... RemarksEnter system view system-view —Create an ACL andenter basic ACL viewacl number acl-number[ match-order { auto |config } ]Requiredconfig by defaultDefine an ACL rule rule [ rule-id ] { deny |permit } [ rule-string ]RequiredFor information aboutrule-string, refer to ACLCommand.Configure a descriptionstring to the ACL description text OptionalNot configured by defaultNote that:z With the config match order specified for the basic ACL, you can modify anyexistent rule. The unmodified part of the rule remains. With the auto match orderspecified for the basic ACL, you cannot modify any existent rule; otherwise thesystem prompts error information.z If you do not specify the rule-id argument when creating an ACL rule, the rule willbe numbered automatically. If the ACL has no rules, the rule is numbered 0;otherwise, the number of the rule will be the greatest rule number plus one. If the