DGS-3100 Series Gigabit Stackable Managed Switch CLI Manual
207
name, to specify bits that should be “0” type – and the flag
bit name.
• udp – Specifies that the Switch examine the protocol field in
each packet and it should match User Datagram Protocol
(UDP).
• src_port <value 0-65535> – Specifies that the access profile
applies only to packets that have this UDP source port in
their header.
• dst_port <value 0-65535> – Specifies that the access profile
applies only to packets that have this UDP destination port
in their header.
• protocol_id <value 0-255> – Specifies that the Switch
examine the Protocol field in each packet and if this field
contains the value entered here, apply the appropriate rules.
• user_define <hex 0x0-0xfffffff> – Specifies a hexadecimal
value to identify the protocol to be discovered in the packet
header.
ports [<portlist> | <ch1-32>] | - The access profile for IP may be
defined for each port on the Switch.
permit – Specifies that packets that match the access profile are
permitted to be forwarded by the Switch special actions may be
added to the ruke such as:
• replace_priority – Specifies the value to replace the 802.1p
default priority of a packet, which meets the criteria specified
previously in this command, before forwarding it on to the
specified CoS queue. Otherwise, a packet will have its
incoming 802.1p user priority re-written to its original value
before being forwarded by the Switch.
• replace_dscp <value 0-63> – Specifies a value to be
written to the DSCP field of an incoming packet that meets
the criteria specified in the first part of the command. This
value will over-write the value in the DSCP field of the
packet.
• rate_limit <value 64-1000000> – Specifies the kbps rate
limit to limit Rx bandwidth for for the profile being configured.
The user may select a value between 64- 1000000 or no
limit. The default setting is no limit.
deny – Specifies that packets that do not match the access profile
are not permitted to be forwarded by the Switch and will be filtered.
• time_range <range_name 32> –Defines a time range
name.
Restrictions Only administrator or operate-level users can issue this command.
Example usage:
To configure a rule for the IP access profile:
DGS3100# config access_profile profile_id 2 add access_id 2 ip protocol_id 2 port 2 deny
Success.
DGS3100#
To Next Page
Loading...
