Assigning Individual Acls To A Port; Acl Order Of Precedence; Acl Metering And Re-Marking - Lenovo RackSwitch G8264 Application Manual

Assigning Individual ACLs to a Port

ACL Order of Precedence

ACL Metering and Re-Marking

128
G8264 Application Guide for ENOS 8.4
Once you configure an ACL, you must assign the ACL to the appropriate ports.
Each port can accept multiple ACLs, and each ACL can be applied for multiple
ports. ACLs can be assigned individually.
To assign an individual ACLs to a port, use the following IP Interface Mode
commands:
RS G8264(config)# interface port <port>
RS G8264(config­if)# access­control list <IPv4 ACL number>
RS G8264(config­if)# access­control list6 <IPv6 ACL number>
When multiple ACLs are assigned to a port, higher‐priority ACLs are considered
first, and their action takes precedence over lower‐priority ACLs. ACL order of
precedence is discussed in the next section.
When multiple ACLs are assigned to a port, they are evaluated in numeric
sequence, based on the ACL number. Lower‐numbered ACLs take precedence
over higher‐numbered ACLs. For example, ACL 1 (if assigned to the port) is
evaluated first and has top priority.
If multiple ACLs match the port traffic, only the action of the one with the lowest
ACL number is applied. The others are ignored.
If no assigned ACL matches the port traffic, no ACL action is applied.
You can define a profile for the aggregate traffic flowing through the G8264 by
configuring a QoS meter (if desired) and assigning ACLs to ports.
Note: When you add ACLs to a port, make sure they are ordered correctly in terms
of precedence (see "ACL Order of Precedence" on page
Actions taken by an ACL are called In‐Profile actions. You can configure additional
In‐Profile and Out‐of‐Profile actions on a port. Data traffic can be metered, and
re‐marked to ensure that the traffic flow provides certain levels of service in terms
of bandwidth for different types of network traffic.
128).