BigIron RX Series Configuration Guide xvii
53-1002253-01
Configuring rate limiting policies . . . . . . . . . . . . . . . . . . . . . . . . . . .508
Configuring a port-based rate limiting policy . . . . . . . . . . . . . .508
Configuring a port-and-priority-based rate limiting policy . . . .509
Configuring a port-and-VLAN-based rate limiting policy . . . . .509
Configuring a VLAN-group-based rate limiting policy. . . . . . . .510
Configuring a port-and-IPv6 ACL-based traffic reduction . . . .512
NP based multicast, broadcast, and unknown-unicast
rate limiting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .513
Displaying traffic reduction. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .514
Chapter 20 Layer 2 ACLs
Filtering based on ethertype . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 517
Configuration rules and notes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 517
Configuring Layer 2 ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .518
Creating a Layer 2 ACL table . . . . . . . . . . . . . . . . . . . . . . . . . . .518
Example Layer 2 ACL clauses . . . . . . . . . . . . . . . . . . . . . . . . . .519
Inserting and deleting Layer 2 ACL clauses . . . . . . . . . . . . . . .520
Binding a Layer 2 ACL table to an interface. . . . . . . . . . . . . . .520
Increasing the maximum number of clauses per
Layer 2 ACL table . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .520
Viewing Layer 2 ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .520
Example of Layer 2 ACL deny by MAC address . . . . . . . . . . . .521
Chapter 21 Access Control List
How the BigIron RX processes ACLs . . . . . . . . . . . . . . . . . . . . . . . .523
Disabling or re-enabling Access Control Lists (ACLs) . . . . . . . . . . .524
Default ACL action. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .524
Types of IP ACLs. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .524
ACL IDs and entries. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .525
Enabling support for additional ACL statements . . . . . . . . . . . . . .525
ACL-based inbound mirroring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .526
Considerations when configuring ACL-based inbound
mirroring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .526
Configuring ACL-based inbound mirroring . . . . . . . . . . . . . . . .526
Creating an ACL with a mirroring clause . . . . . . . . . . . . . . . . .526
Applying the ACL to an interface . . . . . . . . . . . . . . . . . . . . . . . .527
Specifying the destination mirror port . . . . . . . . . . . . . . . . . . .527
Configuring ACL-based mirroring for ACLs bound to virtual
interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .529
Configuring numbered and named ACLs. . . . . . . . . . . . . . . . . . . . .529
Configuring standard numbered ACLs . . . . . . . . . . . . . . . . . . .529
Configuring extended numbered ACLs . . . . . . . . . . . . . . . . . . .531
Configuring standard or extended named ACLs . . . . . . . . . . .539
Configuring super ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .542
To Next Page
Loading...
