EasyManuals Logo

Enterasys SecureStack B3 User Manual

Enterasys SecureStack B3
582 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #336 background imageLoading...
Page #336 background image
set policy rule
10-10 Policy Classification Configuration
Syntax
Thiscommandhastwoformsofsyntax—onetocreateanadminrule(forpolicyID0),andthe
othertocreateaclassificationruleandattach ittoapolicyprofile.
set policy rule admin-profile {vlantag data [mask mask] admin-pid profile-index}
[port-string port-string]
set policy rule profile-index {ether |ipproto | ipdestsocket | ipsourcesocket |
iptos | macdest | macsource |tcpdestport | tcpsourceport | udpdestport |
udpsourceport} data [mask mask] [vlan vlan] [cos cos] | [drop | forward]
Parameters
Thefollowingparametersapplytocreatinganadminrule.
Thefollowingparametersapplytocreatingaclassificationrule.
Note: C3, B3, and G3 devices support the following numbers of unique rules per system.
128 L2 DA/SA MAC rules
128 L2 Ethertype rules
511 L3/L4 rules
These rules can be shared on different ports with different users, but are not shared between
profiles.
Note: Classification rules are automatically enabled when created.
adminprofile SpecifiesthatthisisanadminruleforpolicyID0.
vlantagdata Classifiesbased onVLANtagspecifiedbydata.Valueofdatacanrange
from1to4094or0xFFF.
maskmask (Optional)Specifiesthenumberofsignificantbitstomatch,dependent
onthedatavalueentered.Valueof
maskcanrangefrom1to12.
RefertoTable 103forvalidvaluesforeachclassificationtypeanddata
value.
adminpid
profileindex
Associatesthisadminrulewithapolicyprofile,identifiedbyitsindex
number.Policyprofilesareconfiguredwiththesetpolicyprofile
commandasdescribed
insetpolicyprofileonpage 103.
Validprofileindexvaluesare1‐255.
portstringportstring (Optional)Assignsthisruletothespecifiedpolicyprofileonspecific
ingressport(s).Rulewouldnotbeuseduntilpolicyisassignedtothe
specifiedport(s)usingthesetpolicyportcommand
asdescribedinset
policyportonpage 1014.
profileindex Specifiesapolicyprofilenumbertowhichthisrulewillbeassigned.
Policyprofilesareconfiguredwiththesetpolicyprofilecommandas
describedinsetpolicyprofileonpage 103.Validprofileindexvalues
are1‐255.
ether ClassifiesbasedontypefieldinEthernetIIpacket.
ipproto
ClassifiesbasedonProtocolfieldinIPpacket.

Table of Contents

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Enterasys SecureStack B3 and is the answer not in the manual?

Enterasys SecureStack B3 Specifications

General IconGeneral
BrandEnterasys
ModelSecureStack B3
CategorySwitch
LanguageEnglish

Related product manuals