Operation Manual – ACLH3C S7500 Series Ethernet Switches Chapter 1 ACL Configuration1-15rule 0 permit tcp source 129.9.0.0 0.0.255.255 destination 202.38.160.00.0.0.255 destination-port eq www (0 times matched)1.7 Defining Layer 2 ACLsLayer 2 ACLs define rules based on the Layer 2 information such as the source anddestination MAC address information, VLAN priority and Layer 2 protocol to processpackets.The value range for Layer 2 ACL numbers is 4,000 to 4,999.1.7.1 Configuration PrerequisitesBefore configuring an ACL rule containing time range arguments, you need to definethe corresponding time ranges. For the configuration of time ranges, refer toConfiguring Time Ranges.The values of the source and destination MAC addresses, VLAN priority and Layer 2protocol in the rule have been defined.1.7.2 Configuration ProcedureTable 1-13 Create a Layer 2 ACL ruleTo do... Use the command... RemarksEnter system view system-view —Create or enter layer2 ACL viewacl { number acl-number |name acl-name [ advanced| basic | link | user ] }[ match-order { config |auto } ]RequiredBy default, the match orderis config.Define an ACL rule rule [ rule-id ] { permit |deny } [ rule-string ]RequiredIf you do not specify therule-string argument, theswitch will choose ingressany egress any by default.Display ACLinformationdisplay acl config { all |acl-number | acl-name }OptionalThis command can beexecuted in any view.rule-string: rule information, which can be combination of the parameters described inTable 1-14.