D-Link DES-3026 Reference Manual - Page 161

icmp type 11 code 32 port 1 deny, ip vlan default source_ip 20.2.2.3 destination_ip 10.1.1.252 dscp 3

Get D-Link DES-3026 - Switch PDF manuals and user guides
UPC - 790069280771
View all D-Link DES-3026 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 161 highlights

DES-3000 Series Layer 2 Switch CLI Reference Manual config cpu access_profile • packet_content_mask - Specifies that the Switch will mask the packet header beginning with the offset value specified as follows: • offset_0-15 - Enter a value in hex form to mask the packet from byte 0 to byte 15. • offset_16-31 - Enter a value in hex form to mask the packet from byte 16 to byte 31. • offset_32-47 - Enter a value in hex form to mask the packet from byte 32 to byte 47. • offset_48-63 - Enter a value in hex form to mask the packet from byte 48 to byte 63. • offset_64-79 - Enter a value in hex form to mask the packet from byte 64 to byte 79. port - The access profile for the CPU may be defined for each port on the Switch. The port list is specified by listing the lowest switch number and the beginning port number on that switch, separated by a colon. Then the highest switch number, and the highest port number of the range (also separated by a colon) are specified. The beginning and end of the port list range are separated by a dash. For example, 1:3 specifies switch number 1, port 3. 2:4 specifies switch number 2, port 4. 1:3-2:4 specifies all of the ports between switch 1, port 3 and switch 2, port 4 − in numerical order. permit | deny - Specify that the packet matching the criteria configured with command will either be permitted entry to the CPU or denied entry to the CPU. Restrictions delete access_id - Use this to remove a previously created access rule in a profile ID. Only administrator-level users can issue this command. Example usage: To configure cpu access list entry: DES-3026:4#config cpu access_profile profile_id 1 add access_id 1 ip vlan default source_ip 20.2.2.3 destination_ip 10.1.1.252 dscp 3 icmp type 11 code 32 port 1 deny Command: config cpu access_profile profile_id 1 add access_id 1 ip vlan default source_ip 20.2.2.3 destination_ip 10.1.1.252 dscp 3 icmp type 11 code 32 port 1 deny Success. DES-3026:4# 157

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
  • 187
  • 188
  • 189
  • 190
  • 191
  • 192
  • 193
  • 194
  • 195
  • 196
  • 197
  • 198
  • 199
  • 200
  • 201
  • 202
  • 203
  • 204
  • 205
  • 206
  • 207
  • 208
  • 209
  • 210
  • 211
  • 212
  • 213
  • 214
  • 215
  • 216
  • 217
  • 218
DES-3000 Series Layer 2 Switch CLI Reference Manual
config cpu access_profile
permit | deny
– Specify that the packet matching the criteria configured with command will
either be permitted entry to the CPU or denied entry to the CPU.
delete access_id <value 1-65535> -
Use this to remove a previously created access rule in
a profile ID.
Restrictions
Only administrator-level users can issue this command.
packet_content_mask
– Specifies that the Switch will mask the packet header
beginning with the offset value specified as follows:
offset_0-15
- Enter a value in hex form to mask the packet from byte 0 to byte 15.
offset_16-31
- Enter a value in hex form to mask the packet from byte 16 to byte
31.
offset_32-47
- Enter a value in hex form to mask the packet from byte 32 to byte
47.
port <portlist>
- The access profile for the CPU may be defined for each port on the Switch.
The port list is specified by listing the lowest switch number and the beginning port number
on that switch, separated by a colon. Then the highest switch number, and the highest port
number of the range (also separated by a colon) are specified. The beginning and end of
the port list range are separated by a dash. For example, 1:3 specifies switch number 1,
port 3. 2:4 specifies switch number 2, port 4. 1:3-2:4 specifies all of the ports between
switch 1, port 3 and switch 2, port 4
in numerical order.
offset_48-63
- Enter a value in hex form to mask the packet from byte 48 to byte
63.
offset_64-79
- Enter a value in hex form to mask the packet from byte 64 to byte
79.
Example usage:
To configure cpu access list entry:
DES-3026:4#
DES-3026:4#config cpu access_profile profile_id 1 add access_id 1
ip vlan default source_ip 20.2.2.3 destination_ip 10.1.1.252 dscp 3
icmp type 11 code 32 port 1 deny
Command: config cpu access_profile profile_id 1 add access_id 1 ip
vlan default source_ip 20.2.2.3 destination_ip 10.1.1.252 dscp 3 icmp
type 11 code 32 port 1 deny
Success.
157