Table of Contents
Advertisement
IP
4 H
A
C
V
ARDWARE
CCESS
ONTROL
-
(
ACCESS
LIST
NUMBERED HARDWARE
access-list (numbered hardware ACL for IP
packets)
Overview
This command creates an access-list for use with hardware classification. The
access-list will match on packets that have the specified source and destination IP
addresses. You can use the value any instead of source or destination address if an
address does not matter.
Once you have configured the ACL, you can use the
access-group
The optional vlan parameter can be used to match tagged (802.1q) packets.
The no variant of this command removes the previously specified IP hardware
access-list.
access-list <3000-3699> <action> ip <source-ip> <dest-ip> [vlan
Syntax
<1-4094>]
no access-list <3000-3699>
Table 36-2: IP and ICMP parameters in access-list (hardware IP numbered)
C613-50170-01 Rev B
L
(ACL) C
IST
OMMANDS
ACL
IP
)
FOR
PACKETS
command to apply this ACL to a port, VLAN or QoS class-map.
Parameter
Description
<3000-3699>
An ID number for this hardware IP access-list.
<action>
The action that the switch will take on matching packets:
deny
permit
copy-to-cpu
copy-to-mirror
send-to-mirror
send-to-vlan-port
vlan <vid> port
<port-number>
send-to-cpu
Command Reference for x510 Series
AlliedWare Plus™ Operating System - Version 5.4.7-1.x
access-group
or the
Reject packets that match the
source and destination filtering
specified with this command.
Permit packets that match the
source and destination filtering
specified with this command.
Send a copy of matching packets to
the CPU.
Send a copy of matching packets to
the mirror port.
Use the
mirror interface
command
to configure the mirror port.
Send matching packets to the mirror
port.
Use the
mirror interface
command
to configure the mirror port.
Send matching packets to the
specified port, tagged with the
specified VLAN. The specified port
must belong to the specified VLAN.
Send matching packets to the CPU.
match
1473
Hide quick links:
Advertisement
Chapters
Table of Contents
