Rule Number
Action
Source MAC
Address
Destination
MAC Address
Ethertype
VLAN ID
COS
Log
Assign Queue
Mirror Interface
Redirect
Interface
Time Range
name
Rule Status
Quality of Service (QoS) Commands
474
ProSafe Managed Switch
IP Access Control List (ACL) Commands
This section describes the commands you use to configure IP ACL settings. IP ACLs ensure
that only authorized users have access to specific resources and block any unwarranted
attempts to reach network resources.
The following rules apply to IP ACLs:
• Managed switch software does not support IP ACL configuration for IP packet fragments.
• The maximum number of ACLs you can create is hardware dependent. The limit applies
to all ACLs, regardless of type.
• The maximum number of rules per IP ACL is hardware dependent.
• Wildcard masking for ACLs operates differently from a subnet mask. A wildcard mask is
in essence the inverse of a subnet mask. With a subnet mask, the mask has ones (1's) in
the bit positions that are used for the network address, and has zeros (0's) for the bit
positions that are not used. In contrast, a wildcard mask has (0’s) in a bit position that
must be checked. A ‘1’ in a bit position of the ACL mask indicates the corresponding bit
can be ignored.
Term Definition
The ordered rule number identifier defined within the MAC ACL.
The action associated with each rule. The possible values are Permit or Deny.
The source MAC address for this rule.
The destination MAC address for this rule.
The Ethertype keyword or custom value for this rule.
The VLAN identifier value or range for this rule.
The COS (802.1p) value for this rule.
Displays when you enable logging for the rule.
The queue identifier to which packets matching this rule are assigned.
The unit/slot/port to which packets matching this rule are copied.
The unit/slot/port to which packets matching this rule are forwarded.
Displays the name of the time-range if the MAC ACL rule has referenced a time range.
Status (Active/Inactive) of the MAC ACL rule
To Next Page
Loading...
