SNR S2940-8G-v2 Switch Configuration Guide
Self-defined ACL Configuration
1. Create a self-defined ACL template according to condition
2. Create a corresponding self-defined ACL
3. Bind the self-defined ACL to the port
The configuration steps are listed below:
Switch(config)#userdefined-access-list standard offset window1 l3start 6
window2 l3start 7
Switch(config)#userdefined-access-list standard 1200 deny 00-12-11-23-00-00
00-00-00-00-ff-ff any-destination-mac untagged-802-3
window1 0A01 FFFF window2 0100 FF00
Switch(config)#userdefined-access-list standard 1200 deny 00-12-11-23-00-00
00-00-00-00-ff-ff any-destination-mac tagged-802-3
window1 0A01 FFFF window2 0100 FF00
Switch(config)#firewall enable
Switch(config)#vacl userdefined access-group 1200 in vlan 10
Switch(config)#exit
Configuration result:
Switch #show access-lists
userdefined-access-list standard 1200(used 1 time(s)) 2 rule(s)
rule ID 1: deny 00-12-11-23-00-00 00-00-00-00-ff-ff any-destination-mac
untagged-802-3 window1 a01 ffff window2 100 ff00
rule ID 2: deny 00-12-11-23-00-00 00-00-00-00-ff-ff any-destination-mac
tagged-802-3 window1 a01 ffff window2 100 ff00
Switch #show vacl vlan 10
VLAN 10:
Userdefined Ingress access-list used is 1200, traffic-statistics Disable.
304
To Next Page
Loading...
General