Alcatel OS-LS-6224 User Manual page 192
User guide
Hide thumbs
Also See for OS-LS-6224:
- Getting started manual (60 pages) ,
- User manual (762 pages) ,
- Getting started manual (52 pages)
Table of Contents
Advertisement
3
Configuring the Switch
• Protocol ID — Adds user-defined protocols by which packets are matched to the
ACE. Each protocol has a specific protocol number which is unique. The
possible field range is 0-255.
• Flag Set — Displays the TCP flag that is triggered.
• ICMP Type — Specifies an ICMP message type for filtering ICMP packets.
• ICMP Code — Specifies an ICMP message code for filtering ICMP packets. ICMP
packets that are filtered by ICMP message type can also be filtered by the ICMP
message code.
• IGMP Type — Displays the IGMP message type. IGMP packets can be filtered by
IGMP message type.
• Source IP Address — Matches the source IP address, to which packets are
addressed to the ACE.
• Source Mask — Defines the source IP address wildcard mask. Wildcard masks
specify which bits are used and which bits are ignored. A wild card mask of
255.255.255.255 indicates that no bit is important. A wildcard of 0.0.0.0 indicates
that all the bits are important. For example, if the source IP address
149.36.184.198 and the wildcard mask is 255.36.184.00, the first eight bits of the
IP address are ignored, while the last eight bits are used.
• Destination Port — Defines the TCP/UDP destination port. This field is active only
if 800/6-TCP or 800/17-UDP are selected in the Select from List drop-down menu.
The possible field range is 0 - 65535.
• Dest. IP Address — Matches the destination IP address, to which packets are
addressed to the ACE.
• Mask — Defines the destination IP address wildcard mask. Wildcard masks
specify which bits are used and which bits are ignored. A wild card mask of
255.255.255.255 indicates that no bit is important. A wildcard of 0.0.0.0
indicates that all the bits are important. For example, if the destination IP
address 149.36.184.198 and the wildcard mask is 255.36.184.00, the first eight
bits of the IP address are ignored, while the last eight bits are used.
• Match DSCP — Matches the packet DSCP value to the ACE. Either the DSCP
value or the IP Precedence value is used to match packets to ACLs. The possible
field range is 0-63.
• Match IP Precedence — Matches the packet IP Precedence value to the ACE.
Either the DSCP value or the IP Precedence value is used to match packets to
ACLs. The possible field range is 0-7.
• Action — The ACL forwarding action. Possible values are:
• Permit — Forwards packets which meet the ACL criteria.
• Deny — Drops packets which meet the ACL criteria.
• Shutdown — Drops packet that meets the ACL criteria, and disables the port to
which the packet was addressed. Ports are reactivated from the Interface
Configuration Page.
• Remove — If checked, remove the ACE.
Web – Click Security, Access Control, IP Based ACL, define the fields and click
Apply.
168
- Quick Links:
- Chapter 2: Initial Configuration
Hide quick links:
Advertisement
Table of Contents
