Quality Of Service (Qos) Commands; Mac Access Control List (Acl) Commands - Hirschmann PowerMICE Reference Manual
Command line interface
industrial ethernet (gigabit-) switch
Hide thumbs
Also See for PowerMICE:
- User manual (308 pages) ,
- Reference manual (572 pages) ,
- User manual (76 pages)
Table of Contents
Advertisement
5.0
Quality of Service (QoS) Commands
This chapter provides a detailed explanation of the Quality of Service (QOS) commands.
The commands are divided into these different groups:
Show commands are used to display device settings, statistics and other information.
Configuration Commands are used to configure features and options of the switch. For every con-
figuration command there is a show command that will display the configuration setting.
5.1 MAC Access Control List (ACL) Commands
MAC Access Control Lists (ACLs) ensure that only authorized users have access to specific resources
while blocking off any unwarranted attempts to reach network resources.
Note:
5.1.1 mac access-list extended
This command creates a MAC Access Control List (ACL) identified by <name>, consisting of
classification fields defined for the Layer 2 header of an Ethernet frame. The <name> parameter is a
case-sensitive alphanumeric string from 1 to 31 characters uniquely identifying the MAC access list.
If a MAC ACL by this name already exists, this command enters Mac-Access-List config mode to
allow updating the existing MAC ACL.
Note:
Format
Mode
5.1.1.1 no mac access-list extended
This command deletes a MAC ACL identified by <name> from the system.
Format
Mode
Quality of Service (QoS) Commands
© 2001- 2006 Hirschmann Automation and Control GmbH. All Rights Reserved.
The maximum number of ACLs of any type that can be created is 100.
ACLs are supported in the inbound direction only.
Only Ethernet II frame types are supported.
The maximum number of rules per MAC ACL is 10.
The maximum number of rules per interface is 20 (100 for Software Version L3P).
ACLs are configured separately for Layer 2 and Layer 3/Layer 4 and cannot be applied to the
same interface.
Wildcard masking for MAC ACLs (srcmacmask, dstmacmask) operates differently from a
subnet mask. A wildcard mask is in essence the inverse of a subnet mask. With a subnet mask,
the mask has ones (1's) in the bit positions that are used for the network address, and has zeros
(0's) for the bit positions that are not used. In contrast, a wildcard mask has (0's) in a bit posi-
tion that must be checked. A '1' in a bit position of the ACL mask indicates the corresponding
bit can be ignored.
The CLI mode is changed to Mac-Access-List Config when this command is success-
fully executed.
mac access-list extended <name>
Global Config
no mac access-list extended <name>
Global Config
43
- Quick Links:
- Ip Access Control List (Acl) Commands
Hide quick links:
Advertisement
Table of Contents
