Mac Access-Group - NETGEAR M6100 Series Reference Manual
Hide thumbs
Also See for M6100 Series:
- Hardware installation manual (76 pages) ,
- Software setup manual (34 pages) ,
- Installation manual (20 pages)
Table of Contents
Advertisement
about configuring time ranges, see
page
1054.
The assign-queue parameter allows specification of a particular hardware queue for
handling traffic that matches this rule. The allowed queue-id value is 0-(n-1), in which n is
the number of user configurable queues available for the hardware platform. The
assign-queue parameter is valid only for a permit rule.
The mirror parameter allows the traffic matching this rule to be copied to the specified
unit/slot/port, while the redirect parameter allows the traffic matching this rule to be
forwarded to the specified unit/slot/port. The assign-queue and redirect
parameters are only valid for a permit rule.
Note:
The special command form {deny | permit} any any is used to
match all Ethernet layer 2 packets, and is the equivalent of the IP
access list match every" rule.
The permit command's optional attribute rate-limit allows you to permit only the
allowed rate of traffic as per the configured rate in kbps, and burst-size in kbytes.
Command example:
(NETGEAR Switch) (Config)#mac access-list extended mac1
(NETGEAR Switch) (Config-mac-access-list)#permit 00:00:00:00:aa:bb ff:ff:ff:ff:00:00 any
rate-limit 32 16
(NETGEAR Switch) (Config-mac-access-list)#exit
mac access-group
This command either attaches a specific MAC Access Control List (ACL) identified by name
to an interface or range of interfaces, or associates it with a VLAN ID, in a given direction.
The name parameter must be the name of an existing MAC ACL.
An optional sequence number may be specified to indicate the order of this mac access list
relative to other mac access lists already assigned to this interface and direction. A lower
number indicates higher precedence order. If a sequence number is already in use for this
interface and direction, the specified mac access list replaces the currently attached mac
access list using that sequence number. If the sequence number is not specified for this
command, a sequence number that is one greater than the highest sequence number
currently in use for this interface and direction is used.
This command specified in Interface Config mode only affects a single interface, whereas the
Global Config mode setting is applied to all interfaces. The vlan keyword and vlan-id
argument are valid only in the Global Config mode. The Interface Config mode command is
only available on platforms that support independent per-port class of service queue
configuration.
M6100 Series Switches
Time Range Commands for Time-Based ACLs on
Quality of Service Commands
1030
Advertisement
Chapters
Table of Contents
