Configuring the ECN330-switch
1731553-KDU 137 365 Uen D 2006-06-16
• When an ACL is bound to an interface as an egress filter, all entries in
the ACL must be deny rules. Otherwise, the bind operation will fail.
• The ECN330-switch does not support the explicit “deny any any” rule for
the egress IP ACL or the egress MAC ACLs. If these rules are included
in an ACL, and an attempt is made to bind the ACL to an interface for
egress checking, the bind operation will fail.
Command Attributes
• Port – Fixed port or SFP module. (Range: 1-12)
• IP – Specifies the IP ACL to bind to a port.
• MAC – Specifies the MAC ACL to bind to a port.
• IN – ACL for ingress packets.
• OUT – ACL for egress packets.
• ACL Name – Name of the ACL.
Web – Click Security, ACL, Port Binding. Mark the Enable field for the port to be
bound to an ACL for ingress or egress traffic, select the required ACL from the
drop-down list, then click Apply.
Figure 62 Mapping ACLs to Port Ingress/Egress Queues
To Next Page
Loading...
