Bind Acl - Planet WGSW-28040 Command Manual
Managed 28-port switch
Hide thumbs
Also See for WGSW-28040:
- User manual (285 pages) ,
- User manual (324 pages) ,
- Quick installation manual (16 pages)
Table of Contents
Advertisement
match-all
[shutdown]
Mode:
IP ACL Configuration
Usage Guide:
Use the deny command to add deny conditions for an IPv6 ACE that drop those packets hit the ACE. The "sequence"
also represents hit priority when ACL bind to an interface. An ACE not specifies "sequence" index would assign a
sequence index which is the largest existed index plus 20. If packet content can match more than one ACE, the
lowest sequence ACE is hit. An ACE can not be added if has the same conditions as existed ACE. Use "shutdown"
to shutdown interface while ACE hit.
Example:
The example shows how to add an ACE that denies packets with destination IP address fe80::abcd. You can verify
settings by the following show acl command
Switch334455(config)# ipv6 acl ipv6test
Switch334455(ip-al)# deny ipv6 any fe80::abcd/128
Switch334455(ip-al)# show acl
IPv6 access list ipv6test
sequence 1 deny ipv6 any fe80::abcd/128
4.3.10 bind acl
Command:
(mac|ip|ipv6) acl NAME
[no] (mac|ip|ipv6) acl NAME
Parameter:
(mac|ip|ipv6)
NAME
Mode:
Specify tcp flag for TCP packet. If a flag should be set it is prefixed by \"+\".If a flag
should be unset it is prefixed by \"-\". Available options are +urg, +ack, +psh, +rst, +syn,
+fin, -urg, -ack, -psh, -rst, -syn and -fin.To define more than 1 flag - enter additional
flags one after another without a space (example +syn-ack).
(Optional) Shutdown interface while ACE hit
Specify a type of ACL to binding to interface
Specify the name of ACL
Command Guide of WGSW-28040
63
- Quick Links:
- Switchport Mode
Hide quick links:
Advertisement
Table of Contents
