3Com 3CDSG10PWR User Guide - Page 68
Destination MAC Address, Destination Mask, VLAN ID, CoS Mask, Ethertype, Action
UPC - 662705520902
View all 3Com 3CDSG10PWR manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 68 highlights
68 CHAPTER 4: MANAGING DEVICE SECURITY For example, if the source MAC address is E0:3B:4A:C2:CA:E2 and the wildcard mask is 00:00:00:00:00:FF, the first five bytes of the MAC are used, while the last byte is ignored. For the source MAC address E0:3B:4A:C2:CA:E2, this wildcard mask matches all MAC addresses in the range E0:3B:4A:C2:CA:00 to E0:3B:4A:C2:CA:FF. ■ Destination MAC Address - Matches the destination MAC address to which packets are addressed to the rule. ■ Destination Mask - Defines the destination MAC Address wildcard mask. Wildcards are used to mask all or part of a destination MAC address. Wildcard masks specify which bits are used and which are ignored. A wildcard mask of FF:FF:FF:FF:FF indicates that no bit is important. A wildcard mask of 00.00.00.00.00.00 indicates that all bits are important. For example, if the destination MAC address is E0:3B:4A:C2:CA:E2 and the wildcard mask is 00:00:00:00:00:FF, the first five bytes of the MAC are used, while the last byte is ignored. For the destination MAC address E0:3B:4A:C2:CA:E2, this wildcard mask matches all MAC addresses in the range E0:3B:4A:C2:CA:00 to E0:3B:4A:C2:CA:FF. ■ VLAN ID - Matches the packet's VLAN ID to the rule. The possible field values are 1 to 4093. ■ CoS - Classifies traffic based on the CoS tag value. ■ CoS Mask - Defines the CoS mask used to classify network traffic. ■ Ethertype - Defines an identifier that differentiates between various types of protocols. ■ Action - Selects the ACL forwarding action. In addition, the port can be shut down, a trap can be sent to the network administrator, or packet is assigned rate limiting restrictions for forwarding. The options are as follows: ■ Permit - Forwards packets which meet the ACL criteria. ■ Deny - Drops packets which meet the ACL criteria. ■ Shutdown - Drops packet that meets the ACL criteria, and disables the port to which the packet was addressed. Ports are reactivated from the Port Administration Setup Page. 2 Define the fields. 3 Click . The MAC-based ACL rule settings are modified, and the device is updated.