xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual
config access_profile (for Ethernet)
Parameters
port <portlist> | all - The access profile for Ethernet may be defined for each port on the
Switch. Up to 128 rules may be configured for each port. The user may select all ports by
entering the all parameter.
permit – Specifies that packets that match the access profile are permitted to be forwarded
by the Switch.
rx_rate – Use this to limit Rx bandwidth for for the profile being configured. This rate is
implemented using the following equation – 1 value = 64kbit/sec. (ex. If the user selects a
rx rate of 10 then the ingress rate is 640kbit/sec.) The user many select a value between 1-
156249 or no limit. The default setting is no limit.
deny – Specifies that packets that do not match the access profile are not permitted to be
forwarded by the Switch and will be filtered.
delete access_id <value 1-128> − Use this command to delete a specific rule from the
Ethernet profile. Up to 100 rules may be specified for the Ethernet access profile.
Restrictions Only administrator-level users can issue this command.
format: 000000000000-FFFFFFFFFFFF
• destination_mac <macaddr> − Specifies that the access profile will apply to only
packets with this destination MAC address. MAC address entries may be made in the
following format: 000000000000-FFFFFFFFFFFF
• 802.1p <value 0-7> − Specifies that the access profile will apply only to packets with
this 802.1p priority value.
• ethernet_type <hex 0x0-0xffff> − Specifies that the access profile will apply only to
packets with this hexadecimal 802.1Q Ethernet type value in the packet header.
• priority <value 0-7> − This parameter is specified if you want to re-write the 802.1p
default priority previously set in the Switch, which is used to determine the CoS
queue to which packets are forwarded to. Once this field is specified, packets
accepted by the Switch that match this priority are forwarded to the CoS queue
specified previously by the user.
• {replace_priority} − Enter this parameter if you want to re-write the 802.1p default
priority of a packet to the value entered in the Priority field, which meets the criteria
specified previously in this command, before forwarding it on to the specified CoS
queue. Otherwise, a packet will have its incoming 802.1p user priority re-written to its
original value before being forwarded by the Switch.
Example usage:
To configure a rule for the Ethernet access profile:
DGS-3400:4#config access profile profile_id 1 add access_id 1 ethernet vlan Trinity
802.1p 1 port 1 permit priority 1 replace priority
Command: config access profile profile_id 1 add access_id 1 ethernet vlan Trinity
802.1p 1 port 1 permit priority 1 replace priority
Success.
DGS-3400:4#
create access_profile (IP)
Purpose Used to create an access profile on the Switch by examining the IP part of the packet
header. Masks entered can be combined with the values the Switch finds in the specified
frame header fields. Specific values for the rules are entered using the config
access_profile command, below.
Syntax
create access_profile profile_id <value 1-6> ip {source_ip_mask <netmask> |
destination_ip_mask <netmask> | dscp | [icmp | igmp | tcp {src_port_mask <hex 0x0-
0xffff> | dst_port_mask <hex 0x0-0xffff> | flag_mask [all | {urg | ack | psh | rst | syn |
fin}]} | udp {<hex 0x0-0xffff> | dst_port_mask <hex 0x0-xffff>} | protocol_id_mask
{<hex 0x0-0xffff> [user_define_mask <hex 0x0-0xffff}]}
154
To Next Page
Loading...
