Configuring Ip Acls - Hirschmann MACH 4000 User Manual
Industrial ethernet (gigabit) switch
Hide thumbs
Also See for MACH 4000:
- Reference manual (286 pages) ,
- User manual (136 pages) ,
- Programming manual (116 pages)
Table of Contents
Advertisement
Protection from unauthorized access
PERMIT
Source MAC: ANY
Destination MAC: 01:15:4E:00:00:00
Destination MAC mask: 00:00:00:00:00:03
CLI command in the Config-mac-access mode:
permit any 01:15:4E:00:00:00 00:00:00:00:00:03
Note: MAC address masks in the rules of ACLs are inverse.
This means that if you want to mask a single MAC address, you select the
network mask 00:00:00:00:00:00.
If you want to mask MAC addresses in the range from 00:80:63:00:00:00 to
00:80:63:FF:FF:FF, you select the network mask 00:00:00:FF:FF:FF.
6.6.4 Configuring IP ACLs
Example: Extended ACL
IP: 10.0.1.11/24
C
Interface: 2.3
D
Interface: 1.3
IP: 10.0.1.159/24
B and C are not allowed to communicate with A.
enable
configure
Basic - L3P
Release 4.0 11/07
6.6 Access Control Lists (ACL).
IP: 10.0.1.13/24
Interface: 3.1
Interface: 2.1
IP: 10.0.1.158/24
Switch to the Priviledged EXEC mode.
Switch to the Configuration mode.
B
A
21
Hide quick links:
Advertisement
Table of Contents
