To Next Page

To Previous Page

Chapter4ServiceConguration

CommandMode

Layer2ingressACLcongurationmode

Syntax

rule<1-500>{permit|deny}ip{[cos<0-7>][<vlan-id>[<vlan-mask>]][<source-mac><smac-ma

sk>|any][<dest-mac><dmac-mask>|any]}

ParameterDescription

<1-500>Rulenumber.

permitIftheconditionmatches,accessispermitted.

denyIftheconditionmatches,accessisdenied.

ThisruleisonlyvalidforIPpacket.Non-IPpacketignoresthis

rule.

cos<0-7>

Thisruleisonlyvalidforthecos-speciedmessage.Ignorethis

ruleforothermessages.Therangeofcosis0to7.

<vlan-id>

ThisruleisonlyvalidformessageswiththespeciedVLANID.

Ignorethisruleforothermessages.TheruleofVLANIDis1

to4094.

<vlan-mask>OptionalVLANmask.Thedefaultvalueis0xfff.

<source-mac>SourceMACaddressofthetransmittedpacket.

<smac-mask>SourceMACmask.

any(rst)

TheanykeywordisusedastheabbreviationofthesourceMAC

address00.00.00.00.00.00andthemask00.00.00.00.00.00.

<dest-mac>DestinationMACaddressofthetransmittedpacket.

<dmac-mask>DestinationMACmask.

any(second)

Theanykeywordisusedastheabbreviationofthedestination

MACaddress00.00.00.00.00.00andthemask00.00.00.00.00.00.

Guidelines

TheIPrulecanmatchIPv4packetswithcoselds,VLANelds,speciedsourceMAC,

anysourceMAC,specieddestinationMAC,oranydestinationMAC.

4.13.21ingress-acllinkruletype-arp

Purpose

Thiscommandsetstherulethatthelayer–2ingressACLmatchesARPpackets.

4-229

SJ-20131111172707-003|2013-11-27(R1.0)ZTEProprietaryandCondential

Other manuals for Zte ZXR10 5250-28SM

Questions and Answers:

Need help?

Do you have a question about the Zte ZXR10 5250-28SM and is the answer not in the manual?

General