D-Link DWS-4026 Product Manual - Page 350
Modifying an IP-based Rule, Adding a New Rule to an IP-based ACL, IP TOS Bits
UPC - 790069325533
View all D-Link DWS-4026 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 350 highlights
D-Link Unified Access System Software User Manual 12/10/09 Field Service Type Table 219: IP ACL Rule Configuration Fields (Cont.) Description Select one of the following three Match conditions for the extended IP ACL rule. These are alternative ways of specifying a match condition for the same Service Type field in the IP header, however each uses a different user notation. After a selection is made, the appropriate value can be specified: • IP DSCP: This field matches the packet DSCP value to the rule. Specify the IP DiffServ Code Point (DSCP) field. The DSCP is defined as the high-order six bits of the Service Type octet in the IP header. This is an optional configuration. Enter an integer from 0 to 63. The IP DSCP is selected by selecting one of the DSCP keyword values from a menu. If a value is to be selected by specifying its numeric value, then select the 'Other' option in the menu and a text box will appear where you can enter the numeric value of the DSCP. • IP Precedence: The IP Precedence field in a packet is defined as the high-order three bits of the Service Type octet in the IP header. This is an optional configuration. This field matches the packet IP Precedence value to the rule when checked. Enter the IP Precedence value, an integer from 0 to 7, to match. Either the DSCP value or the IP Precedence value is used to match packets to ACLs. • IP TOS Bits: The IP TOS field in a packet is defined as all eight bits of the Service Type octet in the IP header. Matches on the Type of Service bits in the IP header when checked. For example, to check for an IP TOS value having bits 7 and 5 set and bit 1 clear, where bit 7 is most significant, use a TOS Bits value of 0xA0 and a TOS Mask of 0xFF. This is an optional configuration. - TOS Bits: This value is a hexadecimal number from 00 to FF. Requires the bits in a packet's TOS field to match the two-digit hexadecimal number entered here. - TOS Mask: This value is a hexadecimal number from 00 to FF. Specifies the bit positions that are used for comparison against the IP TOS field in a packet. Modifying an IP-based Rule Rules can be modified only when the ACL to which they belong is not bound to an interface. 1 Open the IP ACL Rule Configuration page. 2 Select the desired ACL from the IP ACL menu. 3 Select the desired rule from the Rule ID menu. 4 Modify the remaining fields as needed. 5 Click Submit. The IP-based rule is modified, and the device is updated. Adding a New Rule to an IP-based ACL 1 Open the IP ACL Rule Configuration page. 2 Select the desired ACL from the IP ACL menu. 3 Specify Create Rule for Rule ID and enter a new ID number. 4 Define the remaining fields as needed. 5 Click Submit. The new rule is assigned to the specified IP-based ACL. Page 350 Configuring Access Control Lists Document 34CSFP6XXUWS-SWUM100-D7