Setting Up A Default Acl Rule - Avaya 580 User Manual

Chapter 25

Setting Up a Default ACL Rule

CLI Command
25-28
Table 25-16. Examples: Extended ACL Rules
To...
• Use the DSCP to classify all UDP
traffic that has a:
— Source IP address of 7.7.7.7
— Destination IP address of
8.8.8.8
— Destination port between 33
and 44
• Mask the three least significant bits
of the DSCP
• Assign a priority of 7 to all TCP
traffic that has a:
— Source IP address of 9.9.9.9
— Destination IP address of
3.3.3.3
— Destination port between 55
and 66
• Permit TCP connections that meet
this criteria
Use the any keyword in the access list command to set up a default ACL
rule. The rule will be applied to all packets on the switch that do not match
any other ACL rules. The command syntax is:
( configure)# access-list <access-list-name> <access-list-index>
{permit [{use-priority <priority> | use-diffserv [mask] | remark-diffserv
<dscp> [mask] | use-l2}] | fwd1 | fwd2 | fwd3 | fwd4 | fwd5 | fwd6 | fwd7 |
fwd8} any
The default ACL rule must have the highest index in the ACL. To ensure
that the switch never applies the default ACL rule to traffic that matches
other ACL rules, Avaya recommends that you use an index of 512 for the
default ACL rule.
For more information about how default ACL rules work, see
Traffic by Layer 3 or Layer 4
User Guide for the Avaya P580 and P882 Multiservice Switches, v6.1
Enter...
access-list MyAccessList2 9 permit
use-diffserv mask udp host 7.7.7.7
host 8.8.8.8 range 33 44
access-list MyAccessList2 10 permit
use-priority 7 tcp host 9.9.9.9 host
3.3.3.3 range 55 66 established
Characteristics" earlier in this chapter.
3 of 3
"Classifying