EasyManua.ls Logo

Allied Telesis IE340-20GP - Page 1957

Allied Telesis IE340-20GP
3474 pages
Print Icon
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
C613-50631-01 Rev A Command Reference for IE340 Series 1957
AlliedWare Plus™ Operating System - Version 5.5.3-0.x
IPV4 HARDWARE ACCESS CONTROL LIST (ACL) COMMANDS
ACCESS
-LIST (NUMBERED HARDWARE ACL FOR MAC ADDRESSES)
Mode Global Configuration
Default On an interface controlled by a hardware ACL, any traffic that does not explicitly
match a filter is permitted.
Usage notes This command creates an ACL for use with hardware classification. Once you have
configured the ACL, use the access-group or the match access-group command to
apply this ACL to a port, VLAN or QoS class-map.
ACLs numbered in the range 4000-4699 match on packets that have the specified
source and destination MAC addresses.
Examples To create an access-list that will permit packets with a source MAC address of
0000.00ab.1234 and any destination address, use the commands:
awplus# configure terminal
awplus(config)# access-list 4000 permit 0000.00ab.1234
0000.0000.0000 any
Parameter Description
<4000-4699> An ID number for this hardware IP access-list.
<action> The action that the switch will take on matching packets. See the
table above for valid values.
<source-mac> The source MAC address to match against, followed by the mask.
Enter the address in the format <HHHH.HHHH.HHHH>, where each
H is a hexadecimal number.
Enter the mask in the format <HHHH.HHHH.HHHH>, where each H
is a hexadecimal number. For a mask, each value is either 0 or F,
where FF = Ignore, and 00 = Match.
any Match against any source MAC address.
<dest-mac> The destination MAC address to match against, followed by the
mask.
Enter the address in the format <HHHH.HHHH.HHHH>, where each
H is a hexadecimal number.
Enter the mask in the format <HHHH.HHHH.HHHH>, where each H
is a hexadecimal number. For a mask, each value is either 0 or F,
where FF = Ignore, and 00 = Match.
any Match against any destination MAC address.
vlan <1-4094> Match against the specified ID in the packet’s VLAN tag.
inner-vlan
<1-4094>
Match against the inner VLAN tag (VID). This parameter is used
within double-tagged VLANs. It is sometimes referred to as the
C-TAG (Customer VLAN TAG), where the vlan VID tag is referred to as
the S-TAG (Service VLAN TAG).

Table of Contents

Other manuals for Allied Telesis IE340-20GP

Preview: Installation Guide
Installation Guide136 pages
Preview: Quick Installation Guide
Quick Installation Guide4 pages

Related product manuals