< Home

vlan-id (security policy rule view)

Function

The vlan-id command configures a VLAN ID for a security policy rule.

The undo vlan-id command deletes the configured VLAN ID of a security policy rule.

Format

vlan-id { vlan-id | any }

undo vlan-id

Parameters

Parameter Description Value
vlan-id Specifies the VLAN ID. The value is an integer that ranges from 1 to 4094.
any Indicates any VLAN ID. -

Views

Security policy rule view

Default Level

2: Configuration level

Usage Guidelines

By default, the FW parses the outer VLAN tags of QinQ packets. If you need to filter traffic based on inner VLAN tags, run the firewall transparent inside-vlan inspect enable command to enable the detection of inner VLAN tags.

Example

# Configure a VLAN ID in the security policy rule view as the match condition.
<sysname> system-view
[sysname] security-policy
[sysname-policy-security] rule name policy_sec
[sysname-policy-security-rule-policy_sec] vlan-id 2
Parent Topic: Security Policy Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic