Operation Manual – ACLH3C S7500 Series Ethernet Switches Chapter 1 ACL Configuration1-1Chapter 1 ACL ConfigurationNote:Type A line processing units (LPUs) include LS81FT48A, LS81FM24A, LS81FS24A,LS81GB8UA, LS81GT8UA, LS81FT48, LS81FM24, LS81FS24, LS81GB8U andLS81GT8U.When configuring ACL, go to these sections for information you are interested in:z ACL Overviewz Choosing ACL Mode for Traffic Flowsz Specifying the Match Order of ACL Rulesz Configuring Time Rangesz Defining Basic ACLsz Defining Advanced ACLsz Defining Layer 2 ACLsz Defining User-Defined ACLsz Applying ACLs on Portsz Displaying ACL Configurationz ACL Configuration Examples1.1 ACL OverviewAn access control list (ACL) is used primarily to identify traffic flows. In order to filterdata packets, a series of match rules must be configured on the network device toidentify the packets to be filtered. After the specific packets are identified, and based onthe predefined policy, the network device can permit/prohibit the corresponding packetsto pass.ACLs classify packets based on a series of match conditions, which can be the sourceaddresses, destination addresses and port numbers carried in the packets.The packet match rules defined by ACLs can be referenced by other functions thatneed to differentiate traffic flows, such as the definition of traffic classification rules inQoS.According to the application purpose, ACLs fall into the following four types:z Basic ACL: rules are made based on the Layer 3 source IP addresses only.