vlan2 地址:192.168.2.0
vlan3 地址:192.168.3.0
允許 vlan 3 單向訪問 vlan 2,vlan 2 不能訪問vlan 3
[S5500F]acl number 3200
[S5500_903F-acl-adv-3200]rule 0 permit tcp established source 192.168.2.0 0.0.0.255 destination 192.168.3.0 0.0.0.255
[S5500_903F-acl-adv-3200]rule 1 deny tcp source 192.168.2.0 0.0.0.255 destination 192.168.3.0 0.0.0.255
[S5500_903F-Vlan-interface2]packet-filter 3200 inbound
#packet-filter 只支持 Version 5.20, Release 2210 以上版本