D-Link DGS-3120-48PC - Chapter 6 Access Control List (ACL) Command List

D-Link DGS-3120-48PC

813 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

xStack

®

DGS-3120 Series Managed Switch CLI Reference Guide

85

Chapter 6 Access Control List (ACL)

Command List

create access_profile profile_id <value 1-6> profile_name <name 1-32> [ethernet {vlan {<hex

0x0-0x0fff>} | source_mac <macmask 000000000000-ffffffffffff> | destination_mac <macmask

000000000000-ffffffffffff> | 802.1p | ethernet_type} | ip {vlan {<hex 0x0-0x0fff>} |

source_ip_mask <netmask> | destination_ip_mask <netmask> | dscp | [icmp {type | code } |

igmp {type} | tcp {src_port_mask <hex 0x0-0xffff> | dst_port_mask <hex 0x0-0xffff> |

flag_mask [all | {urg | ack | psh | rst | syn | fin}]} | udp {src_port_mask <hex 0x0-0xffff> |

dst_port_mask <hex 0x0-0xffff>} | protocol_id_mask <hex 0x0-0xff> {user_define_mask <hex

0x0-0xffffffff>}]} | packet_content_mask {offset_chunk_1 <value 0-31> <hex 0x0-0xffffffff> |

offset_chunk_2 <value 0-31> <hex 0x0-0xffffffff> | offset_chunk_3 <value 0-31> <hex 0x0-

0xffffffff> | offset_chunk_4 <value 0-31> <hex 0x0-0xffffffff>} | ipv6 {class | flowlabel |

source_ipv6_mask <ipv6mask> | destination_ipv6_mask <ipv6mask> | [tcp { src_port_mask

<hex 0x0-0xffff> | dst_port_mask <hex 0x0-0xffff>} | udp {src_port_mask <hex 0x0-0xffff> |

dst_port_mask <hex 0x0-0xffff> } | icmp { type | code}]}]

delete access_profile [profile_id <value 1-6> | profile_name <name 1-32> | all]

config access_profile [profile_id <value 1-6> | profile_name <name 1-32>] [add access_id

[auto_assign | <value 1-256>] [ethernet {[vlan <vlan_name 32> | vlan_id <vlanid 1-4094>]

{mask <hex 0x0-0x0fff>} | source_mac <macaddr> {mask <macmask>} | destination_mac

<macaddr> {mask <macmask>} | 802.1p <value 0-7> | ethernet_type <hex0x0-0xffff>} | ip

{[vlan <vlan_name 32> | vlan_id <vlanid 1-4094>] {mask <hex 0x0-0x0fff>} | source_ip

<ipaddr> {mask <netmask>} | destination_ip <ipaddr> {mask <netmask>} | dscp <value 0-63>

| [icmp {type <value 0-255> | code <value 0-255>} | igmp {type <value 0-255>} | tcp {src_port

<value 0-65535> {mask <hex 0x0-0xffff>} | dst_port <value 0-65535> {mask <hex 0x0-0xffff>}

| flag [all | {urg | ack | psh | rst | syn | fin}]} | udp {src_port <value 0-65535> {mask <hex 0x0-

0xffff>} | dst_port <value 0-65535> {mask <hex 0x0-0xffff>}} | protocol_id <value 0-255>

{user_define <hex 0x0-0xffffffff> {mask <hex 0x0-0xffffffff>}}]} | packet_content

{offset_chunk_1 <hex 0x0-0xffffffff> {mask <hex 0x0-0xffffffff>} | offset_chunk_2 <hex 0x0-

0xffffffff> {mask <hex 0x0-0xffffffff>} | offset_chunk_3 <hex 0x0-0xffffffff> {mask <hex 0x0-

0xffffffff>} | offset_chunk_4 <hex 0x0-0xffffffff> {mask <hex 0x0-0xffffffff>}}| ipv6 {class <value

0-255> | flowlabel <hex 0x0-0xfffff> | source_ipv6 <ipv6addr> {mask <ipv6mask>} |

destination_ipv6 <ipv6addr> {mask <ipv6mask>} | [tcp {src_port <value 0-65535> {mask <hex

0x0-0xffff>} | dst_port <value 0-65535> {mask <hex0x0-0xffff>}} | udp {src_port <value 0-

65535> {mask <hex 0x0-0xffff>} | dst_port <value 0-65535> {mask <hex 0x0-0xffff>}} | icmp

{type<value 0-255> | code <value 0-255>}]}] [port [<portlist> | all] | vlan_based [vlan

<vlan_name 32> | vlan_id <vlanid 1-4094>]] [permit {priority <value 0-7> {replace_priority} |

[replace_dscp_with <value 0-63> | replace_tos_precedence_with <value 0-7>] |

counter[enable | disable]} | mirror | deny] {time_range <range_name 32>} | delete access_id

<value 1-256>]

show access_profile {[profile_id <value 1-6> | profile_name <name 1-32>]}

config flow_meter [profile_id <value 1-6> | profile_name <name 1-32>] access_id <value 1-256>

[rate [<value 0-1048576>] {burst_size [<value 0-131072>]} rate_exceed [drop_packet |

remark_dscp <value 0-63>] | tr_tcm cir <value 0-1048576> {cbs <value 0-131072>} pir

<value 0-1048576> {pbs <value 0-131072>} {[color_blind | color_aware]} {conform [permit |

replace_dscp <value 0-63>] {counter [enable |disable]}} exceed [permit {replace_dscp <value

0-63>} | drop] {counter [enable |disable]} violate [permit {replace_dscp <value 0-63>} | drop]

{counter [enable |disable]} | sr_tcm cir <value 0-1048576> cbs <value 0-131072> ebs <value

0-131072> {[color_blind | color_aware]} {conform [permit | replace_dscp <value 0-63>]

{counter [enable |disable]}} exceed [permit {replace_dscp <value 0-63>} | drop] {counter

[enable |disable]} violate [permit {replace_dscp <value 0-63>} | drop] {counter [enable

|disable]} | delete]

show flow_meter {[profile_id <value 1-6> | profile_name <name 1-32>] {access_id <value 1-

256>}}

Table of Contents

Related product manuals

Preview: D-Link xStack DGS-3120-48PC

D-Link xStack DGS-3120-48PC

Preview: D-Link DGS-3120-24TC

D-Link DGS-3120-24TC

Preview: D-Link DGS-3120-24PC

D-Link DGS-3120-24PC

Preview: D-Link xStack DGS-3120 Series

D-Link xStack DGS-3120 Series

Preview: D-Link DGS-3100

D-Link DGS-3100

Preview: D-Link DGS-3100-48

D-Link DGS-3100-48

D-Link DGS-3100-24

D-Link DGS-3130-30S

Preview: D-Link DGS-3130-54TS

D-Link DGS-3130-54TS

Preview: D-Link DGS-3100 SERIES

D-Link DGS-3100 SERIES

Preview: D-Link DGS-3130 Series

D-Link DGS-3130 Series

Preview: D-Link DGS-3130-30TS/BY/B1A

D-Link DGS-3130-30TS/BY/B1A