}
}
The only difference between policy3.pol and policy4.pol is that rule entries two and three are swapped.
The two policies have the same effect, but policy4.pol does not unnecessarily consume an ACL mask.
Mask and Rule Use by Feature: Additionally, certain non-ACL features allocate ACL masks and use ACL
rules in order to function. Here are is a list by feature:
dot1p examination—1 mask, 8 rules (always enabled)
●
DiffServ examination—1 mask, 64 rules (disabled by default)
●
IGMP snooping—2 masks, 2 rules (enabled by default)
●
IP interface—2 masks, 2 rules (disabled by default)
●
VLAN QoS—1 mask, 1 rule per VLAN (disabled by default)
●
port QoS—1 mask, 1 rule (disabled by default)
●
VRRP—2 masks, 2 rules
●
EAPS—1 master config + 1 transit config masks, 1 + number of transit-mode EAPS domains on the
●
port rules
ESRP—1 mask, 1 rule
●
LLDP—1 mask, 1 rule
●
Netlogin—1 mask, 1 rule
●
IPv6—1 mask, 1 rule
●
ExtremeWare XOS 11.3 Concepts Guide
Applying ACL Policy Files
277