Clearing The Filter Count; Filtering On Ip Precedence And Tos Values; Tcp Flags - Edge Port Security - Dell PowerConnect B-FCXs Configuration Manual

Powerconnect b-series fcx

Hide thumbs Also See for PowerConnect B-FCXs:

Hardware installation manual (86 pages)

User manual (152 pages)

Getting started manual (260 pages)

Table of Contents

Clearing the filter count

To clear the filter count for all interfaces on the device, enter a command such as the following.

PowerConnect(config)# clear ACL-on-arp

The above command resets the filter count on all interfaces in a device back to zero.

Syntax: clear ACL-on-arp

Filtering on IP precedence and ToS values

To configure an extended IP ACL that matches based on IP precedence, enter commands such as

the following.

PowerConnect(config)#access-list 103 deny tcp 209.157.21.0/24 209.157.22.0/24

precedence internet

PowerConnect(config)#access-list 103 deny tcp 209.157.21.0/24 eq ftp

209.157.22.0/24 precedence 6

PowerConnect(config)#access-list 103 permit ip any any

The first entry in this ACL denies TCP traffic from the 209.157.21.x network to the 209.157.22.x

network, if the traffic has the IP precedence option "internet" (equivalent to "6").

The second entry denies all FTP traffic from the 209.157.21.x network to the 209.157.22.x

network, if the traffic has the IP precedence value "6" (equivalent to "internet").

The third entry permits all packets that are not explicitly denied by the other entries. Without this

entry, the ACL would deny all incoming or outgoing IP traffic on the ports to which you assign the

To configure an IP ACL that matches based on ToS, enter commands such as the following.

PowerConnect(config)#access-list 104 deny tcp 209.157.21.0/24 209.157.22.0/24

PowerConnect(config)#access-list 104 deny tcp 209.157.21.0/24 eq ftp

209.157.22.0/24 tos 13

PowerConnect(config)#access-list 104 permit ip any any

The first entry in this IP ACL denies TCP traffic from the 209.157.21.x network to the 209.157.22.x

network, if the traffic has the IP ToS option "normal" (equivalent to "0").

The second entry denies all FTP traffic from the 209.157.21.x network to the 209.157.22.x

network, if the traffic has the IP ToS value "13" (equivalent to "max-throughput", "min-delay", and

"min-monetary-cost").

The third entry permits all packets that are not explicitly denied by the other entries. Without this

entry, the ACL would deny all incoming or outgoing IP traffic on the ports to which you assign the

The ege port security feature works in combination with IP ACL rules and can be combined with

other ACL functions (such as dscp-marking and traffic policies), giving you greater flexibility when

designing ACLs.

PowerConnect B-Series FCX Configuration Guide

53-1002266-01

Troubleshooting

Clearing The Filter Count; Filtering On Ip Precedence And Tos Values; Tcp Flags - Edge Port Security - Dell PowerConnect B-FCXs Configuration Manual

Filtering on IP precedence and ToS values

Clearing the filter count

TCP flags - edge port security

Troubleshooting

Related Manuals for Dell PowerConnect B-FCXs

Related Content for Dell PowerConnect B-FCXs

This manual is also suitable for:

Table of Contents