![Icon [all products]](https://www.thunder-link.com/tl-content/uploads/2022/05/Icon-all-products-1.svg "Icon [all products]"){kind=icon}
All productsAccess Control List (ACL) perform packet filtering to control the movement of packets through a network. Time-range command is used to specify the ACL rule for effective time slot. Therefore, in this article we will introduce the application of time-range in Huawei MA5600 series equipment.
time-range
Command function
Time-range command is used to specify ACL rule of effective time slot. After the command is executed successfully, you can specify effective time by referring to the name of the time slot when create ACL rule.
undo time-range command is used for deleting a time slot.
Command format
time-range time-name { start-time to end-time days | from time1 date1 [ to time2 date2 ] }
undo time-range time-name
parameter declaration:
| Parameter | Parameter Declaration | Value |
| time-name | The name of time slot references this name when configure ACL rule.
When use rule (basic ACL) rule (ADV ACL), rule (link ACL) or rule (user ACL) command to create ACL rules, it can be referenced. |
The String type, you can enter the string length of 1-32 characters. Explain: Can only be a combination of letters and numbers, and the first character cannot be the number. |
| start-time | Start time of relative time. Together with end-time to determine a time range, days defined date, three parameters jointly determine a relatively time slot. | The numeric type, format for hh:mm. Among them, the range of each parameter is: 00:00-24:00. |
| end-time | End time of relative time. Together with start-time to determine a time range, days defined date, three parameters jointly determine a relatively time slot. | Numeric type, format for hh:mm. Among them, the range of each parameter is: 00:00-24:00. |
| days | The specific date of relative time slot. | Numeric type, value range: 0-6. Among them, 0 stands for Sunday, 1 stands for Monday, 2
stands for Tuesday, and so on. You can also use enumeration type, where the meaning of each parameter is as follows: Mon: Monday |
| to | Keywords of configuration time. | – |
| from | When configure the absolute time, the keywords of the start time. | – |
| time1 date1 | Absolute time slot of start time and date. Together with date2 time2 to jointly determine an absolute time slot. | Numerical types, formats respectively are: hh:mm and YYYY/MM/DD. Among them, the range of each parameter is: hh:mm: 00:00-24:00 YYYY: 1970-2099 MM: 01-12 DD: 01-31 |
| time2 date2 | The absolute time slot of the end time and date. Together with date1 time1 to jointly determine an absolute time slot. | Numerical types, formats respectively are: hh:mm and YYYY/MM/DD. Among them, the range of each parameter is: hh:mm: 00:00-24:00 YYYY: 1970-2099 MM: 01-12 DD: 01-31 |
Pattern
Global configuration mode
Level
Operators
Operating guide
1.ACL time slot is divided into relative time and absolute time:
- Relative time, refers to the slot time, for example, every Monday from 8:30 am to 18:30 pm.
- Absolute time, from a specific point of time to another, For example, June 8, 2006 12:00 to August 8, 2006 18:00.
2.Time effective principle:
- When there is only absolute time or relative time, the time slot from the union of all time.
- When absolute time and relative time exist simultaneously, the effective time first select the union time slot of the absolute time and relative time, and then taking the intersection. For example, the time slot A consists of 4 time slots, respectively is:
- Relative time slot 1: 12:10 – 20:00 every day.
- Relative time slot 2: 11:00 – 15:10 every day.
- Absolute slot 3: 2010-01-02 10:10?2010-01-04 20:10.
- Absolute slot 4: 2010-01-03 15:10?2010-01-05 20:00.
The actual time slot is:
- 2010-01-02 11:00?2010-01-02 20:00
- 2010-01-03 11:00?2010-01-03 20:00
- 2010-01-04 11:00?2010-01-04 20:00
- 2010-01-05 11:00?2010-01-05 20:00
3.System can be configured with up to 256 time slots. Each time slots can be configured with a maximum of 32 relative time slots and 12 absolute time slots.
4.The time slot referenced by the ACL rule cannot be deleted. If necessary, you must delete the corresponding ACL rule first.
5.You can only set the time or date of one system. The system uses full-time. The time and date of system must be entered using the specified format.
Case
For example: Configure a recurring working time, every Monday and Tuesday are valid from 8:00 AM to 18:30 PM.
Thunder-OLT(config)#time-range
{ string<S><Length 1-32> }:worktime
{ <hh:mm>|from<K> }:08:00
{ to<K> }:to
{ <hh:mm> }:18:30
{ <0-6>|daily<K>|Fri<K>|Mon<K>|off-day<K>|Sat<K>|Sun<K>|Thu<K>|Tue<K>|Wed<K>|working-day<K> }:Mon
{ <0-6>|<cr>|daily<K>|Fri<K>|off-day<K>|Sat<K>|Sun<K>|Thu<K>|Tue<K>|Wed<K>|working-day<K> }: Tue
{ <0-6>|<cr>|daily<K>|Fri<K>|off-day<K>|Sat<K>|Sun<K>|Thu<K>|Wed<K>|working-day< K> }:
Command:
time-range worktime 08:00 to 18:30 Mon Tue
For example: Configure an absolute time slot-June, starting at 00:00 2015-06-01 and ending at 00:00 2015-07-01.
Thunder-OLT(config)#time-range
{ string<S><Length 1-32> }:june
{ <hh:mm>|from<K> }:from
{ <hh:mm> }:00:00
{ YYYY/MM/DD }:2015/06/01
{ <cr>|to<K> }:to
{ <hh:mm> }:00:00
{ YYYY/MM/DD }:2015/07/01
Command:
time-range june from 00:00 2015/06/01 to 00:00 2015/07/01
For example: Delete the time slot.
Thunder-OLT(config)#undo time-range
{ string<S><Length 1-32> }:june
{ <cr>|<hh:mm>|from<K> }:
Command:
undo time-range june
Packet filtering provides security by limiting the access of traffic into a network, restricting user and device access to a network, and preventing traffic from leaving a network. Through the above article, I hope you can understand the application of time-range to improve security through packet filtering. If any question, please feel free to contact: supports@thunder-link.com