3Com 4500 PWR 26-Port Configuration Manual page 523
Hide thumbs
Also See for 4500 PWR 26-Port:
- Manual (942 pages) ,
- Configuration manual (870 pages) ,
- Getting started manual (128 pages)
Table of Contents
Advertisement
Configuring La
yer 2 AC
L
ayer 2 ACLs filter pa
M
AC addresses, VLAN priority, an
A
Layer 2 ACL can be num
Configuration prerequisites
To configure a time range-based Layer 2 ACL rule, you need to create the co
ranges first. For information
The settings to be specifie
priorities, and Layer 2 protocol types, are determined.
Configuration procedure
F
ollow these steps to define a Layer 2 ACL rule:
To do...
E ter system view
n
Create a Layer 2 ACL and enter
lay
er 2 ACL view
Define an ACL rule
As
sign a de
scription string to
the ACL rule
Assign a description string to
the ACL
Note that:
You can modify any existent rule of the Layer2 ACL and the unmodified part of the ACL remains.
If you do not specify the rule-id argument when creating an ACL rule, the rule will be numbered
automatically. If the ACL has no rules, the rule is n
be the greatest rule number plus one. If the current gre
system will tell you that the rule ca
The content of a modified or create
otherwise the rule modification or creation will fail, and the system prompts that the rule already
exists.
Configuration example
# Configure ACL 4000 to deny packets sourced from the MAC address 000d-88f5-97ed, destined for
the MAC address 0011-4301-991e, and with their 802.1p priority being 3.
<Sysname> system-view
[Sysname] acl number 4000
[Sysname-acl-ethernetframe-4000] rule deny cos 3
0011-4301-991e ffff-ffff-ffff
# Display the configuration information of ACL 4000.
L
ckets accord
ing to their Lay
d Layer 2 protocol types.
bered from 4000 to 4999.
about time range configuration, refe
d i
n the rule, such as source a
Use the command...
system-view
acl number acl-number
rule [ rule-id ] { permit | deny }
rule-string
rule rule-id comment text
description text
nnot be created an
d rule cannot be identical with the content of any existing rules;
er 2 information, su
r to
nd de
umbered 0; otherwise, the number of the rule will
atest rule number is 65534, however, the
d you need to specify a number for the rule.
source 000d-88f5-97ed ffff-ffff-ffff dest
44-8
ch
as the source and destination
rrespondin
Configuri
ng Time Range
stination MAC addresses,
Remarks
—
Required
Required
For information about
rule-string, refer to ACL
Commands.
Optional
No description by default
Optional
No description by default
g time
.
VLAN
- Quick Links:
- User Control
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
