DES-1210-28/ME Metro Ethernet Managed Switch CLI Reference Guide
288
Description
The config access_profile ethernet command defines the rules
used by the Switch to either filter or forward packets based on the
Ethernet part of each packet header.
Parameters
profile_id <value 1-50> – Specifies the access profile id to be
configured with this command. This value is assigned to the access
profile when it is created with the create access_profile command.
The lower the profile ID, the higher the priority the rule will be given.
[add | delete] access_id <value 1-65535>
–
Adds or deletes an
additional rule to the above specified access profile. The value
specifies the relative priority of the additional rule. Up to 65535
rules
may be configured for the Ethernet access profile.
• auto_assign – Configures the Switch to automatically assign
a numerical value (between 1 and 65535) for the rule being
configured.
ethernet – Specifies that the Switch examine only the layer 2 part of
each packet to determine if it is to be filtered or forwarded based on
one or more of the following:
• vlan <vlanid 1-4094> – Specifies that the access profile
applies only to this previously created VLAN.
• source_mac <macaddr> – Specifies that the access profile
applies only to packets with this source MAC address. MAC
address entries may be made in the following format:
000000000000-FFFFFFFFFFFF.
• destination_mac <macaddr> – Specifies that the access
profile applies only to packets with this destination MAC
address. MAC address entries may be made in the following
format: 000000000000-FFFFFFFFFFFF
• 802.1p <value 0-7> – Specifies that the access profile
applies only to packets with this 802.1p priority value.
• ethernet_type <hex 0x05dd-0xffff> – Specifies that the
access profile applies only to packets with this hexadecimal
802.1Q Ethernet type value in the packet header.
ports <portlist> - The access profile for Ethernet may be defined for
each port on the Switch.
• mirror – Specifies the action to mirror before being
forwarded by the Switch.
• replace_dscp_with <value 0-63> – Specifies a value to be
written to the DSCP field of an incoming packet that meets
the criteria specified in the first part of the command. This
value will over-write the value in the DSCP field of the
packet.
• rx_rate <value 64-1024000> – Specifies the rate limit to
limit Rx bandwidth for for the profile being configured. This
rate is implemented using the following equation – 1 value =
64kbit/sec. (ex. If the user selects a rx rate limit of 10 then
the ingress rate is 640kbit/sec.) The user many select a
value between 64- 1024000 or no limit. The default setting is
no limit.
deny – Specifies that packets that do not match the access profile
are not permitted to be forwarded by the Switch and will be filtered.
ip – Specifies that the Switch examine the IP fields in each packet to
determine if it will be either forwarded or filtered based on one or
more of the following:
To Next Page
Loading...
