Access Control List (ACL) Commands
Extreme Networks EAS 100-24t Switch CLI Manual
231
Parameters profile_id <value 1-256> - Enter an integer used to identify the access profile
that will be configured with this command. This value is assigned to the
access profile when it is created with the create access_profile command.
The profile ID sets the relative priority for the profile and specifies an index
number that will identify the access profile being created with this command.
Priority is set relative to other profiles where the lowest profile ID has the
highest priority. The user may enter a profile ID number between 1 and 256.
add access_id <value 1-65535> - Adds an additional rule to the above
specified access profile. The value is used to index the rule created. For
information on number of rules that can be created for a given port, please
see the introduction to this chapter.
auto_assign – Choose this parameter to configure the switch to automatically
assign a numerical value (between 1 and 65535) for the rule being configured.
ethernet - Specifies that the switch will look only into the layer 2 part of each
packet.
vlan <vlan_name 32> - Specifies that the access profile will only apply to the
VLAN with this name.
vlan_id <vid> - Specifies that the access profile will only apply to packets
belonging to the VLAN with this ID.
source_mac <macaddr> - Specifies that the access profile will apply to only
packets with this source MAC address.
destination_mac <macaddr> - Specifies that the access profile will apply to
only packets with this destination MAC address.
802.1p <value 0-7> - Specifies that the access profile will apply only to
packets with this 802.1p priority value.
ethernet_type <hex 0x0-0xffff> - Specifies that the access profile will apply
only to packets with this hexadecimal 802.1Q Ethernet type value in the
packet header.
ip - Specifies that the switch will look into the IP fields in each packet.
vlan <vlan_name 32> - Specifies that the access profile will only apply to the
VLAN with this name.
vlan_id <vid> - Specifies that the access profile will only apply to packets
belonging to the VLAN with this VLAN ID.
source_ip <ipaddr> - Specifies that the access profile will apply to only
packets with this source IP address.
destination_ip <ipaddr> - Specifies that the access profile will apply to only
packets with this destination IP address.
dscp <value 0-63> - Specifies that the access profile will apply only to packets
that have this value in their Type-of-Service (DiffServ code point, DSCP) field
in their IP packet header.
icmp - Specifies that the switch will examine the Internet Control Message
Protocol (ICMP) field within each packet.
type <value 0-255> - Specifies that the switch will examine each frame’s ICMP
Type field.
code <value 0-255> - Specifies that the switch will examine each frame’s
ICMP Code field.
igmp - Specifies that the switch will examine the Internet Group Management
Protocol (IGMP) field within each packet.
type <value 0-255> - Specifies that the switch will examine each frame’s
IGMP Type field.
create access_profile
To Next Page
Loading...
Need help?
General
