Interlogix NS4702-24P-4X Command Manual page 37

access-list ace update
Command:
access-list ace update <AceId : 1-512> action {deny, permit} |
dmac-type {any, broadcast, multicast, unicast} | frametype
{any, arp, etype, ipv4, ipv4-icmp, ipv4-tcp, ipv4-udp, ipv6,
ipv6-icmp, ipv6-tcp, ipv6-udp} | ingress {any, interface
10GigabitEthernet | GigabitEthernet <PORT_ID>} | logging
{disable, next, policy, rate-limiter, shutdown, tag-priority, vid}
| next {<AceId : 1-512>, last}| policy <PolicyId : 0-255> | rate-
limiter {<RateLimiterId : 1-16>, disable} | redirect {disable,
interface 10GigabitEthernet | GigabitEthernet <PORT_ID>} |
tag-priority {0-1, 0-3, 2-3, 4-5, 4-7, 6-7, <TagPriority : 0-7>, any}
| vid {<Vid : 1-4095>, any}
<AceId : 1-512>
action Access list action
dmac-type The type of destination MAC address
frametype Frame type
ingress Ingress
logging Logging frame information. Note: The logging feature only
works when the packet length is less than 1518 (without
VLAN tags) and the System Log memory size and logging rate
are limited.
next Insert the current ACE before the next ACE ID
policy Policy
rate-limiter Rate limiter
redirect Redirect frame to specific port
shutdown Shutdown incoming port. The shutdown feature only works
when the packet length is less than 1518 (without VLAN
tags).
tag-priority Tag priority
vid VID field
Default:
N/A
Usage Guide:
To update the specific profile for the access list.
Example:
Original:
Profile 1 (action: permit, dmac-type: unicast, frametype: ipv4-icmp, ingress: any,
logging: disable, policy: 1, rate-limiter: 1, tag-priority: 1. vid: 1).
Updated:
Profile 1 (action: deny, dmac-type: any, frametype: ipv4-icmp, ingress: any,
logging: disable, policy: 1, rate-limiter: 1, tag-priority: 1. vid: 1).
Switch# configure terminal
Switch (config)# access-list ace update 1 action deny dmac-type
any
NS4702-24P-4X Managed Switch Command Guide
ACE ID
Chapter 4: Commands for CLI configuration
35