HP 6125G HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 15
Configuring an Ethernet frame header ACL, Copying an ACL
View all HP 6125G manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 15 highlights
Configuring an Ethernet frame header ACL Ethernet frame header ACLs, also called "Layer 2 ACLs," match packets based on Layer 2 protocol header fields, such as source MAC address, destination MAC address, 802.1p priority (VLAN priority), and link layer protocol type. To configure an Ethernet frame header ACL: Step 1. Enter system view. Command system-view 2. Create an Ethernet frame header ACL and enter its view. acl number acl-number [ name acl-name ] [ match-order { auto | config } ] 3. Configure a description for the Ethernet frame header ACL. 4. Set the rule numbering step. description text step step-value rule [ rule-id ] { deny | permit } [ cos vlan-pri | counting | dest-mac dest-addr dest-mask | { lsap 5. Create or edit a lsap-type lsap-type-mask | rule. type protocol-type protocol-type-mask } | source-mac sour-addr source-mask | time-range time-range-name ] * 6. Add or edit a rule comment. rule rule-id comment text 7. Add or edit a rule range remark. 8. Enable counting ACL rule matches performed in hardware. rule [ rule-id ] remark text hardware-count enable Remarks N/A By default, no ACL exists. Ethernet frame header ACLs are numbered in the range of 4000 to 4999. You can use the acl name acl-name command to enter the view of a named Ethernet frame header ACL. Optional. By default, an Ethernet frame header ACL has no ACL description. Optional. The default setting is 5. By default, an Ethernet frame header ACL does not contain any rule. The lsap keyword is not supported if the ACL is for QoS traffic classification. Optional. By default, no rule comments are configured. Optional. By default, no rule range remarks are configured. Optional. Disabled by default. When the ACL is referenced by a QoS policy, this command does not take effect. Copying an ACL You can create an ACL by copying an existing ACL (source ACL). The new ACL (destination ACL) has the same properties and content as the source ACL, but not the same ACL number and name. 9