Protection from unauthorized access
18
6.6
Access Control Lists (ACL).
Basic - L3P
Release
4.0
11/07
Note: With Power MICE and MACH 4000, you can use either MAC-based or
IP-based ACLs for each interface. With MACH 4002-24G/48G, you can use
both MAC-based and IP-based ACLs for each interface.
6.6.1 Description of prioritizing with ACLs
Prioritizing with ACLs provides you with an extension of the prioritizing func-
tion. Using the "assign queue" ACL action, you can perform extended priori-
tizing using protocols, source and destination addresses, VLAN ID, and so
on (see on page 19 "Description of IP-based ACLs.")(see on page 20 "De-
scription of MAC-based ACLs").
If an ACL rule containing an assign queue action applies to a packet re-
ceived, the Switch modifies the priority information in the data packet (see on
page 137 "QoS/Priority") in accordance with the specified assign queue pa-
rameter (see table 4). This procedure is known as ACL remarking. The
Switch sends the data packets with the modified priority information.
Assign queue
parameter
VLAN priority DSCP
00CS0 (0)
11CS1 (8)
22CS2 (16)
33CS3 (24)
44CS4 (32)
55CS5 (40)
66CS6 (48)
77CS7 (56)
Table 4: Assigning the assign queue parameters to the modified VLAN priority and to
the modified DSCP value
To Next Page
Loading...
Need help?
General
