D-Link DES-1210-28/ME - Access Control List Commands

D-Link DES-1210-28/ME

314 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

DES-1210-28/ME Metro Ethernet Managed Switch CLI Reference Guide

285

43

4343

43

ACCESS CONTROL LIST COMMANDS

The Access Control List commands in the Command Line Interface (CLI) are listed (along with the

appropriate parameters) in the following table.

Command Parameter

create access_profile

[ ethernet {vlan | source_mac <macmask> | destination_mac <macmask> |

802.1p | ethernet_type} | ip {source_ip_mask <netmask> | destination_ip_mask

<netmask> | dscp | [ icmp {type | code} | igmp {type} | tcp {src_port_mask <hex

(0x0-0xffff)> | dst_port_mask <hex (0x0-0xffff)> | flag_mask} | udp

{src_port_mask <hex (0x0-0xffff)> | dst_port_mask <hex (0x0-0xffff)>} |

protocol_id_mask <hex (0x0-0xff)> ] } | packet_content_mask {[offset1 l offset2 |

offset3 | offset4] [I2 | I3 | I4] <value (0-31)> <hex 0x0-0xffff> profile_id <value (1-

50)>

config access_profile

[profile_id <value (1-50)>] [add access_id [auto_assign | <value (1-250)>]]

[ ethernet {vlan <vlanid (1-4094)> | source_mac <macaddr> | destination_mac

<macaddr> | 802.1p <value (0-7)> | ethernet_type <hex (0x0-0xffff)>} | ip

{source_ip <ipaddr> | destination_ip <ipaddr> | dscp <value (0-63)> | [icmp {type

<value (0-255)> code <value (0-255)>} | igmp {type <value (0-255)>} | tcp

{src_port <value (0-65535)> | dst_port <value (0-65535)> | urg | ack | psh | rst |

syn | fin} | udp {src_port <value (0-65535)> | dst_port <value (0-65535)>} |

protocol_id <value(0-255)>]} | packet_content {offset1 <hex (0x0-0xffffffff)> |

offset2 <hex (0x0-0xffffffff)> | offset3 <hex (0x0-0xffffffff)> | offset4 <hex (0x0-

0xffffffff)>}] [port [<portlist> | all] [permit {replace_priority_with <value (0-7)> |

replace_dscp_with <value (0-63)> | rx_rate {no_limit | <value (64-1024000)>}} |

mirror | deny]] delete access_id <value (1-250)>]

delete access_profile

profile_id <value 1-50>

show access_profile

{profile_id <value 1-50>}

create

cpu_access_profile

[ ethernet {vlan | source_mac <macmask> | destination_mac <macmask> |

802.1p | ethernet_type} | ip {source_ip_mask <netmask> | destination_ip_mask

<netmask> | dscp | [ icmp {type | code} | igmp {type} | tcp {src_port_mask <hex

(0x0-0xffff)> | dst_port_mask <hex (0x0-0xffff)> | flag_mask} | udp

{src_port_mask <hex (0x0-0xffff)> | dst_port_mask <hex (0x0-0xffff)>} |

protocol_id_mask <hex (0x0-0xff)>] } ] profile_id <value (1-3)>

config

cpu_access_profile

[profile_id <value (1-3)] [add access_id [ auto_assign | <value (1-5)>]] [ ethernet

{vlan <vlanid (1-4094)> | source_mac <macaddr> | destination_mac <macaddr> |

802.1p <value (0-7)> | ethernet_type <hex (0x0-0xffff)>} | ip {source_ip <ipaddr> |

destination_ip <ipaddr> | dscp <value (0-63)> | [icmp {type <value (0-255)> code

<value (0-255)> } | igmp {type <value (0-255)>} | tcp {src_port <value (0-65535)>

| dst_port <value (0-65535)> | urg | ack | psh | rst | syn | fin} | udp {src_port

<value (0-65535)> | dst_port <value (0-65535)>} | protocol_id <value(0-255)>]

[port [<portlist> | all] [permit | deny]] delete access_id <value (1-5)>]

delete cpu

access_profile

profile_id <value 1-3>

show cpu

access_profile

{profile_id <value 1-3>}

Each command is listed in detail, as follows:

Table of Contents

Related product manuals

Preview: D-Link DES-1210-52/ME

D-Link DES-1210-52/ME

Preview: D-Link DES-1228/ME

D-Link DES-1228/ME

Preview: D-Link DES-1016

D-Link DES-1016

D-Link DES-1005

Preview: D-Link DES-1005D

D-Link DES-1005D

Preview: D-Link DES-1008D

D-Link DES-1008D

Preview: D-Link DES-1016D

D-Link DES-1016D

D-Link DES-1016D - Switch

D-Link DES-1005D - Switch

Preview: 24-Port 10/100/1000Mbps Ethernet Switch DES-1024D

24-Port 10/100/1000Mbps Ethernet Switch DES-1024D

Preview: D-Link xStack DES-3200-10

D-Link xStack DES-3200-10

Preview: D-Link xStack DES-3200 Series

D-Link xStack DES-3200 Series