EasyManua.ls Logo

Enterasys SecureStack C2

Enterasys SecureStack C2
607 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
set policy rule
9-10 Policy Classification Configuration
set policy rule admin-profile {vlantag data [mask mask] admin-pid profile-index}
[port-string port-string]
set policy rule profile-index {ether |icmptype | ipproto | ipdestsocket |
ipsourcesocket | iptos | macdest | macsource |tcpdestport | tcpsourceport |
udpdestport | udpsourceport} data [mask mask] [vlan vlan] [cos cos] | [drop |
forward]
Parameters
Thefollowingparametersapplytocreatinganadminrule.
Thefollowingparametersapplytocreatingaclassificationrule.
Note: Classification rules are automatically enabled when created.
adminprofile SpecifiesthatthisisanadminruleforpolicyID0.
vlantagdata Classifiesbased onVLANtagspecifiedbydata.Valueofdatacanrange
from1to4094or0xFFF.
maskmask (Optional)Specifiesthenumberofsignificantbitstomatch,dependent
onthedatavalueentered.Valueof
maskcanrangefrom1to12.
RefertoTable 93forvalidvaluesforeachclassificationtypeanddata
value.
adminpid
profileindex
Associatesthisadminrulewithapolicyprofile,identifiedbyitsindex
number.Policyprofilesareconfiguredwiththesetpolicyprofile
commandasdescribed
insetpolicyprofileonpage 93.
Validprofileindexvaluesare1‐255.
portstringportstring (Optional)Assignsthisruletothespecifiedpolicyprofileonspecific
ingressport(s).Rulewouldnotbeuseduntilpolicyisassignedtothe
specifiedport(s)usingthesetpolicyportcommand
asdescribedinset
policyportonpage 914.
profileindex Specifiesapolicyprofilenumbertowhichthisrulewillbeassigned.
Policyprofilesareconfiguredwiththesetpolicyprofilecommandas
describedinsetpolicyprofileonpage 93.Validprofileindexvaluesare
1‐255.
ether ClassifiesbasedontypefieldinEthernetIIpacket.
icmptype
ClassifiesbasedonICMPtype.
ipproto ClassifiesbasedonProtocolfieldinIPpacket.
ipdestsocket ClassifiesbasedondestinationIPaddresswithoptionalpostfixedport.
ipsourcesocket ClassifiesbasedonsourceIPaddress,withoptionalpostfixedport.
iptos ClassifiesbasedonTypeofServicefieldinIPpacket.
macdest ClassifiesbasedonMACdestination
address.
macsource ClassifiesbasedonMACsourceaddress.
tcpdestport ClassifiesbasedonTCPdestinationport.
tcpsourceport ClassifiesbasedonTCPsourceport.

Table of Contents

Related product manuals