3Com 4200G 12-Port Configuration Manual page 222
4200g series switch
Hide thumbs
Also See for 4200G 12-Port:
- Configuration manual (730 pages) ,
- Getting started manual (104 pages) ,
- Quick reference manual (43 pages)
Table of Contents
Advertisement
208
C
26: ACL C
HAPTER
Configuration Tasks
ONFIGURATION
Table 179 Configure a Layer 2 ACL rule
Operation
Enter system view
Create or enter layer
2 ACL view
Define an rule
Define the comment
string of the ACL rule
Define the description
information of the
ACL
Display ACL
information
In the case that you specify the rule ID when defining a rule:
If the rule corresponding to the specified rule ID already exists, you will edit the
■
rule, and the modified part in the rule will replace the original content, while other
parts remain unchanged.
If the rule corresponding to the specified rule ID does not exists, you will create
■
and define a new rule.
The content of a modified or created rule must not be identical with the content
■
of any existing rule; otherwise the rule modification or creation will fail, and the
system will prompt that the rule already exists.
If you do not specify a rule ID, you will create and define a new rule, and the system
will assign an ID for the rule automatically.
rule-string: rule information, which can be combination of the parameters given in
Table 180. Table 180 describes the specific parameters.
Table 180 Rule information
Parameter
format-type
lsap lsap-code
lsap-wildcard
source { source-addr
source-mask |
vlan-id }*
dest dest-addr
dest-mask
Command
system-view
acl number acl-number [
match-order { config | auto } ]
rule [ rule-id ] { permit | deny }
rule-string
rule rule-id comment text
description text
display acl { all | acl-number }
Type
Function
Link layer
Defines the link
encapsulation
layer
type
encapsulation
type in the rule
lsap field
Defines the lsap
field in the rule
Source MAC
Specifies the
address
source MAC
information
address range in
the rule
Destination MAC
Specifies the
address
destination MAC
information
address range in
the rule
Description
-
By the default, the match order is
config
Required
Optional
Optional
Optional
The display command can be
executed in any view
Description
format-type: the value can be
802.3/802.2, 802.3, ether_ii, or snap
lsap-code: the encapsulation format
of data frames, a 16-bit hexadecimal
number
lsap-wildcard: mask of the lsap value,
a 16-bit hexadecimal number used to
specify the mask bit
source-addr: source MAC address, in
the format of H-H-H
source- mask: source MAC address
mask, in the format of H-H-H
vlan-id: source VLAN ID, in the range
of 1 to 4,094
dest-addr: destination MAC address,
in the format of H-H-H
dest- mask: destination MAC address
mask, in the format of H-H-H
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
