1. Manuals
  2. Brands
  3. UTStarcom Manuals
  4. Switch
  5. iSpirit 3026
  6. Manual

Configuration Of Acl Resource Bank - UTStarcom iSpirit 3026 Manual

Hide thumbs
Table of Contents

Advertisement

when this port cannot be configured with ACL filteration, and only after QoS configuration is
cleared ACL filteration can be carried out.
ACL filteration needs FFP resources of port, failed configuration with ACL filtrator maybe caused
by deficient FFP resources and many regulations in ACL group, or FFP resources have been
used by QoS and other applications. The same ACL regulation group can be used for ACL
filtration for many ports with the same filtration regulations. ACL filtration for one port and QoS
Untrust port can be used with the same regulations.

11.3 Configuration of ACL Resource Bank

iSpirit 3026 switch default has no anyother regulations. Resource bank in iSpirit 3026 supports
three kinds of ACL regulations: standard IP regulation, extended IP regulation, and extended
MAC regulation. Hereunder introduce the ACL configuration by following three regulations:
● Standard IP Regulation: it control the forwarding of data packet through resource IP address.
Command format: access-list <groupId> {deny|permit} <source> parameter instruction: groupId:
visit control list number, standard IP ACL support groups from 1-199. Regulation number is
increased one by one, which generated by the system automatically. deny/permit: the data
packet can be denied or permitted to be forwarded if they are well matched. Source: resouce IP
has three kinds of input ways:
A.B.C.D wildcard can control the IP address from one network:
Any is equal to A.B.C.D 0.0.0.0
Wildcard: to determine that what bits need to be matched, "0" indicates that it needs match, and
"1" indicates that it needs not match.
●Extended IP Regulation: it is extended from standard IP regulation, which can be controlled
through resource IP, purpose IP, IP protocol type, and service ports.
Forwarding of Data Packet. Command format: access-list <groupId> {deny|permit} <protocol>
<source> [eq srcPort] {destination}[destPort] parameter instruction: groupId: visit control list
number, extended IP ACL supports groups from 200 to 399. Regulation number increased one
by one, which is generated by the system automatically. deny/permit: the data packet can be
denied or permitted to be forwarded if they are well matched. Protocol: the protocol upper than
IP layer, e.g. icmp, cp, and udp, relative data 6(tcp) can be input also. If it is unnecessary to
control these protocols, you may input ip or 0. Source: resource IP has three input ways: (1)

Advertisement

Table of Contents
loading

Related Products for UTStarcom iSpirit 3026

Table of Contents