Configuring An Ethernet Frame Header Acl; Copying An Acl - HP A6600 Configuration Manual

Configuring an Ethernet frame header ACL

Ethernet frame header ACLs, also called "Layer 2 ACLs," match packets based on Layer 2 protocol header
fields such as source MAC address, destination MAC address, 802.1p priority (VLAN priority), and link layer
protocol type.
To do...
1. Enter system view.
2. Create an Ethernet frame
header ACL and enter its view.
3. Configure a description for the
Ethernet frame header ACL.
4. Set the rule numbering step.
5. Create or edit a rule.
6. Configure or edit a rule
description.

Copying an ACL

Create an ACL by copying an existing ACL. The new ACL has the same properties and content as the source
ACL, except the ACL number and name.
To successfully copy an ACL, ensure the following:
The destination ACL number is from the same category as the source ACL number.

The source ACL already exists but the destination ACL does not.

Command...
system-view
acl number acl-number [ name
acl-name ] [ match-order { auto |
config } ]
description text
step step-value
rule [ rule-id ] { deny | permit } [ cos
vlan-pri | counting | dest- mac
dest-addr dest-mask | { lsap
lsap-type lsap-type-mask | type
protocol-type protocol-type-mask }
| source-mac sour-addr source-
mask | time-range time-range-
name ] *
rule rule-id comment text
9
Remarks
––
Required.
By default, no ACL exists.
Ethernet frame header ACLs are
numbered in the range 4000 to
4999.
Use acl name acl-name to enter the
view of a named Ethernet frame
header ACL.
Optional.
By default, an Ethernet frame
header ACL has no ACL
description.
Optional.
5 by default.
Required.
,
By default an Ethernet frame
header ACL does not contain any
rule.
To create or edit multiple rules,
repeat this step.
Optional.
By default, an Ethernet frame
header ACL rule has no rule
description.