Access Control List (Acl) Commands - D-Link DES-3550 Command Line Interface Reference Manual
Layer 2 switch
Hide thumbs
Also See for DES-3550:
- Command line interface reference manual (248 pages) ,
- Manual (218 pages) ,
- User manual (192 pages)
Table of Contents
Advertisement
The DES-3550 implements Access Control Lists that enable the Switch to deny network access to specific devices or device
groups based on IP settings or MAC address.
Note: The ACL command set has been changed for the Release III firmware. In particular, note the
different role of the profile_id and access_id parameters. The new treatment has changed some of
the command parameters as well.
Command
create
access_profile
delete
access_profile
config
access_profile
show
access_profile
DES-3550 Layer 2 Fast Ethernet Switch
A
CCESS
Parameters
[ ethernet { vlan | source_mac <macmask> | destination_mac <macmask> |
802.1p |ethernet_type } ip { vlan | source_ip_mask <netmask> |
destination_ip_mask <netmask> | dscp | [ icmp {type | code } | igmp {type } |
tcp {src_port_mask <hex 0x0-0xffff> | dst_port_mask <hex 0x0-0xffff> | flag_mask [all |
{urg | ack | psh | rst | syn | fin}]} | udp {src_port_mask <hex 0x0-0xffff> |
dst_port_mask <hex 0x0-0xffff>} | protocol_id_mask <hex 0x0 - 0xFF>
{user_define_mask <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff>
<hex 0x0-0xffffffff> <hex 0x0-0xffffffff>} ] } | packet_content_mask {offset_0-15
<hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> |
offset_16-31 <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff>
| offset_32-47 <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff>
<hex 0x0-0xffffffff> | offset_48-63 <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-
0xffffffff> <hex 0x0-0xffffffff> | offset_64-79 <hex 0x0-0xffffffff> <hex 0x0-0xffffffff>
<hex 0x0-0xffffffff> <hex 0x0-0xffffffff> } ] [profile_id <value 1-255>]
profile_id <value 1-255>
profile_id <value 1-255> [ add access_id <value 1-65535> [ ethernet { vlan <vlan_name
32> | source_mac <macaddr> | destination_mac <macaddr> | 802.1p <value 0-7> |
ethernet_type <hex 0x0-0xffff> } | ip { vlan <vlan_name 32> | source_ip <ipaddr> |
destination_ip <ipaddr> | dscp <value 0-63> | [ icmp {type <value 0-255> code <value 0-
255>} | igmp {type <value 0-255>} | tcp {src_port <value 0-65535> | dst_port <value 0-
65535> | flag_mask [all | {urg | ack | psh | rst | syn | fin} | udp {src_port <value 0-65535> |
dst_port <value 0-65535>} | protocol_id <value 0 - 255> {user_define <hex 0x0-0xffffffff>
<hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff>} ] }
|packet_content_mask {offset_0-15 <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-
0xffffffff> <hex 0x0-0xffffffff> | offset_16-31 <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex
0x0-0xffffffff> <hex 0x0-0xffffffff> | offset_32-47 <hex 0x0-0xffffffff> <hex 0x0-0xffffffff>
<hex 0x0-0xffffffff> <hex 0x0-0xffffffff> | offset_48-63 <hex 0x0-0xffffffff> <hex 0x0-
0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> | offset_64-79 <hex 0x0-0xffffffff> <hex
0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> } ]
port <portlist> [ permit {priority <value 0-7> {replace_priority} | replace_dscp_with <value
0-63> } | deny ] | delete access_id <value 1-65535> ]
{profile_id <value 1-255> {access_id <value 1-65535>}}
C
L
ONTROL
IST
201
(ACL) C
OMMANDS
23
Advertisement
Table of Contents
