A10E/A28E/A28F Configuration Guide
Alpha-A28E(config-
aclmap)#match user-define
rule-string rule-mask offset
(Optional) configure match rule for
user-defined field, that is, two
parameters of rule mask and offset take
any byte from bytes 23 to 63 of the first
64 bytes, then comparing with user-
defined rule to filter out matched data
frame for processing.
For example, if you want to filter all
TCP packets, you can define:
Rule: "06"
Rule mask: "FF"
Offset: "27"
The rule mask and offset value work
together to filter out content of TCP
protocol ID field, then comparing with
rule and match with all TCP packets.
The rule number must be a hex
digital. Offset includes field 802.1q
VLAN Tag, even though the
A10E/A28E receives Untag
packets.
6.1.7 Applying ACL
Configure ACL for the A10E/A28E as below.
ACL cannot take effective until it is added into the filter. Multiple ACL match rules can
be added into the filter to form multiple filter rules. When configuring filter, the order to
add ACL match rule decides priority of the rule. The later the rules are added, the
higher the priority is. If the multiple rules are conflicted in matching calculation, take
the higher priority rule as standard. Please pay attention to the order of rules when
setting the commands so as to filter packets correctly.
Applying ACL to the whole device
Configure the A10E/A28E as below.
Enter global configuration mode.
To Next Page
Loading...