To Next Page

To Previous Page

SNR S2940-8G-v2 Switch Configuration Guide

VLAN-ACL Configuration

Switch(config)#ip access-list extended vacl_b

Switch(config-ip-ext-nacl-vacl_a)#permit ip any-source 192.168.1.0 0.0.0.255

Switch(config-ip-ext-nacl-vacl_a)#deny ip any-source any-destination

4) Apply the configuration to VLAN

Switch(config)#vacl ip access-group vacl_a in vlan 1

Switch(config)#vacl ip access-group vacl_b in vlan 2

56.4 VLAN-ACL Troubleshooting

• When VLAN ACL and Port ACL are configured at the same time, the principle of denying

firstly is used. When the packets match VLAN ACL and Port ACL at the same time, as long

as one rule is drop, then the final action is drop.

• Each ACL of different types can only apply one on a VLAN, such as the basic IP ACL, each

VLAN can applies one only.

369

Default Chapter1
- Table of Contents1
I Basic Management Configuration11
1 Switch Management12
- Management Options12
- CLI Interface17
2 Basic Switch Configuration23
- Basic Configuration23
- Telnet Management24
- Configure Switch IP Addresses27
- SNMP Configuration28
  - Introduction to Mib29
  - Introduction to Rmon30
- Switch Upgrade35
  - Switch System Files35
  - Bootrom Upgrade35
- Port Configuration46
3 Port Configuration47
- Introduction to Port47
- Network Port Configuration Task List47
- Port Configuration Example50
- Port Troubleshooting51
4 Port Isolation Function Configuration52
- Introduction to Port Isolation Function52
- Task Sequence of Port Isolation52
- Port Isolation Function Typical Examples53
5 Port Loopback Detection Function Configuration54
- Introduction to Port Loopback Detection Function54
- Port Loopback Detection Function Configuration Task List55
- Port Loopback Detection Function Example56
- Port Loopback Detection Troubleshooting57
6 ULDP Function Configuration58
- Introduction to ULDP Function58
- ULDP Configuration Task Sequence59
- ULDP Function Typical Examples61
- ULDP Troubleshooting63
7 LLDP Function Operation Configuration64
- Introduction to LLDP Function64
- LLDP Function Configuration Task Sequence65
- LLDP Function Typical Example68
- LLDP Function Troubleshooting68
8 Port Channel Configuration69
- Introduction to Port Channel69
- Brief Introduction to LACP70
  - Static Lacp Aggregation71
  - Dynamic Lacp Aggregation71
- Port Channel Configuration Task List71
- Port Channel Examples73
- Port Channel Troubleshooting74
9 MTU Configuration75
- Introduction to MTU75
- MTU Configuration Task Sequence75
10 EFM OAM Configuration76
- Introduction to EFM OAM76
- EFM OAM Configuration79
- EFM OAM Example81
- EFM OAM Troubleshooting82
11 Port Security83
- Introduction to Port Security83
- Port Security Configuration Task List83
- Example of Port Security84
- Port Security Troubleshooting85
12 DDM Configuration86
- Introduction to DDM86
  - Brief Introduction to DDM86
  - DDM Function87
- DDM Configuration Task List88
- Examples of DDM89
- DDM Troubleshooting92
13 Lldp-Med94
- Introduction to LLDP-MED94
- LLDP-MED Configuration Task Sequence94
- LLDP-MED Example96
- LLDP-MED Troubleshooting98
14 BPDU-Tunnel Configuration99
- Introduction to Bpdu-Tunnel99
- Bpdu-Tunnel Configuration Task List100
- Examples of Bpdu-Tunnel100
- Bpdu-Tunnel Troubleshooting101
15 CFM-OAM Configuration102
- Overview102
- CFM OAM Basic Concept103
- Maintenance Domain103
- Introduction of CFM OAM Function105
- CFM OAM Basic Function Configuration108
- CFM OAM Failure Confirmation112
- CFM OAM Failure Orientation113
- ULPP Linkage (Selectable)115
- Example of Configuration Application117
- CFM Troubleshooting120
- VLAN and MAC Table Configuration123
16 VLAN Configuration124
- Introduction to VLAN124
- VLAN Configuration Task List125
- Typical VLAN Application128
- Typical Application of Hybrid Port129
17 Dot1Q-Tunnel Configuration131
- Introduction to Dot1Q-Tunnel131
- Dot1Q-Tunnel Configuration132
- Typical Applications of the Dot1Q-Tunnel132
- Dot1Q-Tunnel Troubleshooting133
18 Selective Qinq Configuration134
- Introduction to Selective Qinq134
- Typical Applications of Selective Qinq135
- Selective Qinq Troubleshooting136
19 VLAN-Translation Configuration137
- Introduction to VLAN-Translation137
- Typical Application of VLAN-Translation138
- VLAN-Translation Troubleshooting139
20 Multi-To-One VLAN Translation Configuration140
- Introduction to Multi-To-One VLAN Translation140
- Typical Application of Multi-To-One VLAN Translation141
- Multi-To-One VLAN Translation Troubleshooting141
21 Dynamic VLAN Configuration143
- Introduction to Dynamic VLAN143
- Typical Application of the Dynamic VLAN145
- Dynamic VLAN Troubleshooting146
22 GVRP Configuration147
- Introduction to GVRP147
- GVRP Configuration Task List148
- Example of GVRP149
- GVRP Troubleshooting150
23 Voice VLAN Configuration151
- Introduction to Voice VLAN151
- Typical Applications of the Voice VLAN152
- Voice VLAN Troubleshooting153
24 MAC Table Configuration154
- Introduction to MAC Table154
  - Obtaining Mac Table154
  - Forward or Filter155
- Mac Address Table Configuration Task List156
- Typical Configuration Examples157
- MAC Table Troubleshooting158
- MAC Address Function Extension158
- Mac Address Binding158
- MAC Notification Configuration161
MSTP Configuration164
25 MSTP Configuration165
- Introduction to MSTP165
- MSTP Configuration Task List167
  - Port Roles167
  - Mstp Load Balance167
- MSTP Example171
- MSTP Troubleshooting175
Qos and Flow-Based Redirection Configuration176
26 Qos Configuration177
- Introduction to Qos177
- Qos Configuration Task List183
- Qos Example186
- Qos Troubleshooting188
27 Flow-Based Redirection193
- Introduction to Flow-Based Redirection193
- Flow-Based Redirection Configuration Task Sequence193
- Flow-Based Redirection Examples194
- Flow-Based Redirection Troubleshooting Help194
28 Flexible Qinq Configuration195
- Introduction to Flexible Qinq195
- Flexible Qinq Configuration Task List195
- Flexible Qinq Troubleshooting197
L3 Forward and ARP Configuration198
29 Layer 3 Management Configuration199
- Layer 3 Management Interface199
- IP Configuration200
- Ipv6 Troubleshooting203
- Static Route203
- Arp206
30 ARP Scanning Prevention Function Configuration207
- Introduction to ARP Scanning Prevention Function207
- ARP Scanning Prevention Configuration Task Sequence207
- ARP Scanning Prevention Typical Examples209
- ARP Scanning Prevention Troubleshooting Help210
31 Prevent ARP Spoofing Configuration211
- Overview211
- Prevent ARP Spoofing Configuration212
- Prevent ARP Spoofing Example213
32 ARP Guard Configuration214
- Introduction to ARP Guard214
- ARP Guard Configuration Task List215
33 Gratuitous ARP Configuration216
- Introduction to Gratuitous ARP216
- Gratuitous ARP Configuration Task List216
- Gratuitous ARP Configuration Example217
- Gratuitous ARP Troubleshooting217
DHCP Configuration218
34 DHCP Configuration219
- Introduction to DHCP219
- DHCP Server Configuration220
- DHCP Relay Configuration222
- DHCP Configuration Examples224
- DHCP Troubleshooting226
35 Dhcpv6 Configuration227
- Introduction to Dhcpv6227
- Dhcpv6 Server Configuration228
- Dhcpv6 Relay Delegation Configuration230
- Dhcpv6 Prefix Delegation Server Configuration230
- Dhcpv6 Prefix Delegation Client Configuration232
- Dhcpv6 Configuration Examples233
- Dhcpv6 Troubleshooting234
36 DHCP Option 82 Configuration235
- Introduction to DHCP Option 82235
- DHCP Option 82 Configuration Task List237
- DHCP Option 82 Application Examples239
- DHCP Option 82 Troubleshooting241
37 DHCP Option 60 and Option 43242
- Introduction to DHCP Option 60 and Option 43242
- DHCP Option 60 and Option 43 Configuration Task List242
- Dhcpv6 Option 60 and Option 43 Example243
- DHCP Option 60 and Option 43 Troubleshooting243
38 Dhcpv6 Option37244
- Introduction to Dhcpv6 Option37, 38244
- Dhcpv6 Option37, 38 Configuration Task List245
- Dhcpv6 Option37, 38 Examples248
- Dhcpv6 Option37, 38 Troubleshooting250
39 DHCP Snooping Configuration251
- Introduction to DHCP Snooping251
- DHCP Snooping Configuration Task Sequence252
- DHCP Snooping Typical Application256
- DHCP Snooping Troubleshooting Help256
- Monitor and Debug Information256
Multicast Protocol257
40 Ipv4 Multicast Protocol258
- Ipv4 Multicast Protocol Overview258
- Dcscm260
- IGMP Snooping264
41 Ipv6 Multicast Protocol270
- Ipv6 DCSCM270
- MLD Snooping270
  - Mld Snooping Examples272
  - Mld Snooping Troubleshooting274
42 Multicast VLAN275
- Introductions to Multicast VLAN275
- Multicast VLAN Configuration Task List275
- Multicast VLAN Examples276
Security Function Configuration278
43 ACL Configuration279
- Introduction to ACL279
- ACL Configuration Task List280
- ACL Example294
- ACL Troubleshooting297
44 Self-Defined ACL Configuration299
- Introduction to Self-Defined ACL299
- Self-Defined ACL Configuration300
- Self-Defined ACL Example303
45 1X Configuration305
- Introduction to 802.1X305
- Configuration Task List316
- Application Example319
  - Examples of Guest Vlan Applications319
  - Examples of Ipv4 Radius Applications321
- Troubleshooting323
46 The Number Limitation Function of MAC and IP in Port, VLAN Configuration324
- Introduction to the Number Limitation Function of MAC and IP in Port, VLAN324
- The Number Limitation Function of MAC and IP in Port, VLAN Configuration Task Sequence325
- The Number Limitation Function of MAC and IP in Port, VLAN Typical Examples327
- The Number Limitation Function of MAC and IP in Port, VLAN Troubleshooting Help328
47 Operational Configuration of am Function329
- Introduction to am Function329
- AM Function Configuration Task List329
- AM Function Example331
- AM Function Troubleshooting331
48 Security Feature Configuration332
- Introduction to Security Feature332
- Security Feature Example334
49 TACACS+ Configuration335
- Introduction to TACACS335
- TACACS+ Configuration Task List335
- TACACS+ Scenarios Typical Examples336
- TACACS+ Troubleshooting337
50 RADIUS Configuration338
- Introduction to RADIUS338
- RADIUS Configuration Task List340
- RADIUS Typical Examples341
- RADIUS Troubleshooting343
51 SSL Configuration344
- Introduction to SSL344
- SSL Configuration Task List345
- SSL Typical Example346
- SSL Troubleshooting346
52 Ipv6 Security RA Configuration348
- Introduction to Ipv6 Security RA348
- Ipv6 Security RA Configuration Task Sequence348
- Ipv6 Security RA Typical Examples349
- Ipv6 Security RA Troubleshooting Help349
53 MAB Configuration350
- Introduction to MAB350
- MAB Configuration Task List350
- MAB Example352
- MAB Troubleshooting354
54 Pppoe Intermediate Agent Configuration355
- Introduction to Pppoe Intermediate Agent355
- Pppoe Intermediate Agent Configuration Task List359
- Pppoe Intermediate Agent Typical Application360
- Pppoe Intermediate Agent Troubleshooting361
55 Web Portal Configuration362
- Introduction to Web Portal Authentication362
- Web Portal Authentication Configuration Task List362
- Web Portal Authentication Typical Example364
- Web Portal Authentication Troubleshooting365
56 VLAN-ACL Configuration366
- Introduction to VLAN-ACL366
- VLAN-ACL Configuration Task List366
- VLAN-ACL Configuration Example368
- VLAN-ACL Troubleshooting369
57 SAVI Configuration370
- Introduction to SAVI370
- SAVI Typical Application373
- SAVI Troubleshooting374
Reliability Configuration376
58 MRPP Configuration377
- Introduction to MRPP377
- MRPP Configuration Task List379
- MRPP Typical Scenario381
- MRPP Troubleshooting383
59 ULPP Configuration384
- Introduction to ULPP384
- ULPP Configuration Task List386
- ULPP Typical Examples387
- ULPP Troubleshooting390
60 ULSM Configuration391
- Introduction to ULSM391
- ULSM Configuration Task List392
- ULSM Typical Example392
- ULSM Troubleshooting394
Flow Monitor Configuration395
61 Mirror Configuration396
- Introduction to Mirror396
- Mirror Configuration Task List396
- Mirror Examples397
- Device Mirror Troubleshooting398
62 Sflow Configuration399
- Introduction to Sflow399
- Sflow Configuration Task List399
- Sflow Examples401
- Sflow Troubleshooting402
Network Time Management Configuration403
63 SNTP Configuration404
- Introduction to SNTP404
- Typical Examples of SNTP Configuration404
64 NTP Function Configuration405
- Introduction to NTP Function405
- NTP Function Configuration Task List405
- Typical Examples of NTP Function408
- NTP Function Troubleshooting408
65 Summer Time Configuration409
- Introduction to Summer Time409
- Summer Time Configuration Task Sequence409
- Examples of Summer Time410
- Summer Time Troubleshooting410
Debugging and Diagnosis411
66 Monitor and Debug412
- Ping412
- Ping6412
- Traceroute412
- Traceroute6413
- Show413
- Debug414
- System Log414
- System Log Configuration416
67 Reload Switch after Specified Time418
- Introduce to Reload Switch after Specifid Time418
- Reload Switch after Specifid Time Task List418
68 Debugging and Diagnosis for Packets Received and Sent by CPU419
- Introduction to Debugging and Diagnosis for Packets Received and Sent by CPU419
- Debugging and Diagnosis for Packets Received and Sent by CPU Task List419

Brand	SNR
Model	S2940-8G-v2
Category	Switch
Language	English

SNR S2940-8G-v2 User Manual

Table of Contents

Questions and Answers:

SNR S2940-8G-v2 Specifications