EasyManuals Logo

Allied Telesis AlliedWare Plus AT-x230-10GP User Manual

Allied Telesis AlliedWare Plus AT-x230-10GP
1536 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #703 background imageLoading...
Page #703 background image
C613-50055-01 REV A Command Reference for x230 Series Edge Switches 703
AlliedWare Plusâ„¢ Operating System - Version 5.4.5-0.x
IPV4 HARDWARE ACCESS CONTROL LIST (ACL) COMMANDS
(ACCESS-LIST HARDWARE TCP UDP FILTER)
Mode IPv4 Hardware ACL Configuration
Default Any traffic on an interface controlled by a hardware ACL that does not explicitly
match a filter is permitted.
Usage First create a named hardware access-list that applies the appropriate permit/deny
requirements. Then use the access-group command to apply this access-list to a
specific port or range. Note that this command will apply the access-list only to
incoming data packets.
An ACL can be configured with multiple ACL filters using sequence numbers. If the
sequence number is omitted, the next available multiple of 10 will be used as the
sequence number for the new filter. A new ACL filter can be inserted into the
middle of an existing list by specifying the appropriate sequence number.
NOTE: The access control list being configured is selected by running the access-list
hardware (named) command. with the required access control list number, or name,
but with no further parameters selected.
Hardware ACLs will permit access unless explicitly denied by an ACL action.
Example To add an access-list filter entry to access-list named my-hw-list that will permit
TCP packets with a destination address of 192.168.1.1, a destination port of
80, and any source address, and source port, use the commands:
awplus# configure terminal
awplus(config)# access-list hardware my-hw-list
awplus(config-ip-hw-acl)# permit tcp any 192.168.1.1/32 eq 80
Related
Commands
access-list hardware (named)
show running-config
show access-list (IPv4 Hardware ACLs)
<destport> The source TCP or UDP port number, specified as an
integer between 0 and 65535.
range Specify the range of port numbers between 0 and
65535.
<start-range> The source or destination port number at the start of
the range <0-65535>.
<end-range> The source or destination port number at the end of
the range <0-65535>.
Parameter Description

Table of Contents

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Allied Telesis AlliedWare Plus AT-x230-10GP and is the answer not in the manual?

Allied Telesis AlliedWare Plus AT-x230-10GP Specifications

General IconGeneral
BrandAllied Telesis
ModelAlliedWare Plus AT-x230-10GP
CategorySwitch
LanguageEnglish

Related product manuals