Interlogix NS4702-24P-4X Command Manual page 36

Chapter 4: Commands for CLI configuration
access-list ace
Command:
access-list ace <AceId : 1-512> action {deny, permit} | dmac-
type {any, broadcast, multicast, unicast} | frametype {any,
arp, etype, ipv4, ipv4-icmp, ipv4-tcp, ipv4-udp, ipv6, ipv6-
icmp, ipv6-tcp, ipv6-udp} | ingress {any, interface
10GigabitEthernet | GigabitEthernet <PORT_ID>} | logging
{disable, next, policy, rate-limiter, shutdown, tag-priority, vid}
| next {<AceId : 1-512>, last}| policy <PolicyId : 0-255> | rate-
limiter {<RateLimiterId : 1-16>, disable} | redirect {disable,
interface 10GigabitEthernet | GigabitEthernet <PORT_ID>} |
tag-priority {0-1, 0-3, 2-3, 4-5, 4-7, 6-7, <TagPriority : 0-7>, any}
| vid {<Vid : 1-4095>, any}
<AceId : 1-512>
action Access list action
dmac-type The type of destination MAC address
frametype Frame type
ingress Ingress
logging Logging frame information. Note: The logging feature only
works when the packet length is less than 1518 (without
VLAN tags) and the System Log memory size and logging rate
are limited.
next Insert the current ACE before the next ACE ID
policy Policy
rate-limiter Rate limiter
redirect Redirect frame to specific port
shutdown Shutdown incoming port. The shutdown feature only works
when the packet length is less than 1518 (without VLAN
tags).
tag-priority Tag priority
vid VID field
Default:
N/A
Usage Guide:
To create and set up a profile for the access list.
Example:
To set a Profile 1 up (action: permit, dmac-type: unicast, frametype: ipv4-icmp,
ingress: any, logging: disable, policy: 1, rate-limiter: 1, tag-priority: 1. vid: 1).
Switch# configure terminal
Switch (config)# access-list ace 1 action permit dmac-type unicast
frametype ipv4-icmp ingress any logging disable policy 1 rate-
limiter 1 tag-priority 1 vid 1
34
ACE ID
NS4702-24P-4X Managed Switch Command Guide