Mac-Based Acl - 3Com 3C13636 Configuration Manual

Router 3000 ethernet family

Hide thumbs Also See for 3C13636:

Installation manual (27 pages)

Table of Contents

3Com Router 3000 Ethernet Family

Configuration Guide

may be used to overwrite the old definition, just as editing an existing ACL rule. If

the ACL rule related to the number does not exist, use the specified number to

create a new rule. When the number is not specified, it indicates to add a new rule.

In this case, the system will assign a number automatically for the ACL rule and

add the new rule.

deny: Discard qualified data packet.

permit: Permit qualified data packet.

comment text: Specifies a comment for each rule.

interface interface-type interface-number: Specifies the interface information of

the packets. If no interface is specified, all interfaces can be matched. any

represents all interfaces.

logging: Optional parameter, indicating whether to log qualified packet. Log

contents include sequence number of ACL rule, packet permitted or discarded and

the number of data packets.

time-range time-name: Optional, specifies the time range in which the rule is

The following command can be used to delete an interface-based ACL rule:

undo rule rule-id [ comment text ] [ logging | time-range ]*

Parameter description:

rule-id: Number of ACL rule, which must be an existing ACL rule number.

comment text: Specifies a comment for each rule.

logging: Optional, indicating whether to log matched packets. The log contents

include sequence number of ACL rule, packets passed or discarded, upper layer

protocol type over IP, source/destination address, source/destination port number,

and number of packets.

time-range: Optional, specifies the time range in which the rule is valid.

5.1.8 MAC-Based ACL

MAC-based ACLs are numbered in the range 4000 to 4999.

You can use the following command to configure a MAC-based ACL rule:

rule [ rule-id ] { deny | permit | comment text } [ type type-code type-mask | lsap

lsap-code lsap-mask ] ] [ source-mac sour-addr sour-mask ] [ dest-mac dest-addr

The parameters are described as follows:

rule-id represents a rule number.

deny: Discard qualified data packet.

permit: Permit qualified data packet.

comment text: Specifies a comment for each rule.

type-code is a hexadecimal number in the format of xxxx, used for matching the

protocol type of the transmitted packets.

3Com Corporation

Chapter 5 ACL Configuration

Chapters

Table of Contents

Troubleshooting

3c13636-us - router 3036 3000 series

Mac-Based Acl - 3Com 3C13636 Configuration Manual

5.1.8 MAC-Based ACL

Chapters

Troubleshooting

Related Manuals for 3Com 3C13636

Related Content for 3Com 3C13636

This manual is also suitable for:

Table of Contents