To Next Page

To Previous Page

set policy rule

9-10 Policy Classification Configuration

set policy rule admin-profile {vlantag data [mask mask] admin-pid profile-index}

[port-string port-string]

set policy rule profile-index {ether |icmptype | ipproto | ipdestsocket |

udpdestport | udpsourceport} data [mask mask] [vlan vlan] [cos cos] | [drop |

forward]

Parameters

Thefollowingparametersapplytocreatinganadminrule.

Thefollowingparametersapplytocreatingaclassificationrule.

Note: Classification rules are automatically enabled when created.

admin‐profile SpecifiesthatthisisanadminruleforpolicyID0.

vlantagdata Classifiesbased onVLANtagspecifiedbydata.Valueofdatacanrange

from1to4094or0xFFF.

maskmask (Optional)Specifiesthenumberofsignificantbitstomatch,dependent

onthedatavalueentered.Valueof

maskcanrangefrom1to12.

RefertoTable 9‐3forvalidvaluesforeachclassificationtypeanddata

value.

admin‐pid

profile‐index

Associatesthisadminrulewithapolicyprofile,identifiedbyitsindex

number.Policyprofilesareconfiguredwiththesetpolicyprofile

commandasdescribed

in“setpolicyprofile”onpage 9‐3.

Validprofile‐indexvaluesare1‐255.

port‐stringport‐string (Optional)Assignsthisruletothespecifiedpolicyprofileonspecific

ingressport(s).Rulewouldnotbeuseduntilpolicyisassignedtothe

specifiedport(s)usingthesetpolicyportcommand

asdescribedin“set

policyport”onpage 9‐14.

profile‐index Specifiesapolicyprofilenumbertowhichthisrulewillbeassigned.

Policyprofilesareconfiguredwiththesetpolicyprofilecommandas

describedin“setpolicyprofile”onpage 9‐3.Validprofile‐indexvaluesare

1‐255.

ether ClassifiesbasedontypefieldinEthernetIIpacket.

icmptype

ClassifiesbasedonICMPtype.

ipproto ClassifiesbasedonProtocolfieldinIPpacket.

ipdestsocket ClassifiesbasedondestinationIPaddresswithoptionalpost‐fixedport.

ipsourcesocket ClassifiesbasedonsourceIPaddress,withoptionalpost‐fixedport.

iptos ClassifiesbasedonTypeofServicefieldinIPpacket.

macdest ClassifiesbasedonMACdestination

address.

macsource ClassifiesbasedonMACsourceaddress.

tcpdestport ClassifiesbasedonTCPdestinationport.

tcpsourceport ClassifiesbasedonTCPsourceport.

Brand	Enterasys
Model	SecureStack C2
Category	Switch
Language	English

Enterasys SecureStack C2 User Manual

Table of Contents

Questions and Answers:

Enterasys SecureStack C2 Specifications

Related product manuals