Access Lists (ACLs)
ExtremeWare XOS 11.3 Concepts Guide
272
create meter <metername>
To delete the meter, use the following command:
delete meter <metername>
Configuring the ACL Meter
After the ACL meter is created, you will configure it. Configuring the ACL meter sets allowable traffic
limits, and the actions to take with out of limit traffic. Use the following command to configure an ACL
meter:
configure meter <metername> {max-burst-size <burst-size> [Gb | Kb | Mb]} {committed-
rate <cir-rate> [Gbps | Mbps | Kbps]} {out-actions [drop | set-drop-precedence {dscp
[none | <dscp-value>]}}
Associating the Meter with an ACL
To associate a meter with an ACL, you will add the meter <metername> statement to the action
modifier of the ACL rule entry, similar to the
count <countername> statement. For example, to
associate the meter maximum_bandwidth with an ACL, use syntax similar to the following:
entry meter_bw {
if {
} then {
meter maximum_bandwidth;
}
}
This example will take the actions specified for the meter maximum_bandwidth for all the traffic that this
ACL is applied to.
Applying ACL Policy Files
A policy file intended to be used as an ACL is applied to a port, VLAN, or to all interfaces (the any
keyword). Use the name of the policy file for the
<aclname> parameter in the CLI command. To apply
an ACL policy, use the following command:
configure access-list <aclname> [any
| ports <portlist> | vlan <vlan
name>] {ingress |
egress}
If you use the any keyword, the ACL is applied to all the interfaces and is referred to as the wildcard
ACL. This ACL is evaluated for any ports without specific ACLs, and it is also applied to any packets
that do not match the specific ACLs applied to the interfaces.
If an ACL is already configured on an interface, the command will be rejected and an error message
displayed.
To remove an ACL from an interface, use the following command:
unconfigure access-list {any | ports
<portlist> | vlan <vlanname>} {
ingress | egress}
To Next Page
Loading...
Need help?
General
