D-Link 3324SRi Reference Manual - Page 232

xStack Gigabit Layer 3 Switch Command Line Interface Manual

create access_profile (IP)

•

destination_ip_mask <netmask>

−

Specifies an IP address

mask for the destination IP address.

•

dscp

−

Specifies that the Switch will examine the DiffServ

Code Point (DSCP) field in each frame’s header.

•

icmp

−

Specifies that the Switch will examine the Internet

Control Message Protocol (ICMP) field in each frame’s header.

•

type

−

Specifies that the Switch will examine each frame’s

ICMP Type field.

•

code

−


ICMP Code field.

•

igmp

−


Internet Group Management Protocol (IGMP) field.

•

type

−


IGMP Type field.

•

tcp

−

Specifies that the Switch will examine each frames

Transport Control Protocol (TCP) field.

•

src_port_mask <hex 0x0-0xffff>

−

Specifies a TCP port

mask for the source port.

•

dst_port_mask <hex 0x0-0xffff>

−

Specifies a TCP port

mask for the destination port.

•

flag_mask [all | {urg | ack | psh | rst | syn | fin}]

– Enter the

appropriate flag_mask parameter. All incoming packets have

TCP port numbers contained in them as the forwarding

criterion. These numbers have flag bits associated with them

which are parts of a packet that determine what to do with the

packet. The user may deny packets by denying certain flag bits

within the packets. The user may choose between

all

,

urg

(urgent),

ack

(acknowledgement),

psh

(push),

rst

(reset),

syn

(synchronize) and

fin

(finish).

•

udp

−


Universal Datagram Protocol (UDP) field.

•

src_port_mask <hex 0x0-0xffff>

−

Specifies a UDP port

mask for the source port.

•

dst_port_mask <hex 0x0-0xffff>

−

Specifies a UDP port

mask for the destination port.

•

protocol_id

−

Specifies that the Switch will examine each

frame’s Protocol ID field.

•

user_define <hex 0x0-0xfffffff>

−

Enter a hexidecimal value

that will identify the protocol to be discovered in the packet

header.

profile_id <value 1-8>

- Specifies an index number between 1 and 8

that will identify the access profile being created with this command.

Restrictions

Only administrator-level users can issue this command.

Example usage:

To configure a rule for the Ethernet access profile:

224

Section	Page
Introduction	9
	9
	9
Accessing the Switch via the Serial Port	9
Setting the Switch’s IP Address	10
Using the Console CLI	12
	12
	12
Connecting to the Switch	12
Command Syntax	17
Basic Switch Commands	19
Switch Port Commands	34
Port Security Commands	37
Network Management (SNMP) Commands	40
Switch Utility Commands	62
Network Monitoring Commands	68
Multiple Spanning Tree Protocol (MSTP) Commands	85
Forwarding Database Commands	99
Broadcast Storm Control Commands	109
QoS Commands	111
Port Mirroring Commands	124
VLAN Commands	128
Link Aggregation Commands	138
IP Commands (Including IP Multinetting)	144
IGMP Commands (Including IGMP v3)	149
IGMP Snooping Commands	153
MAC Notification Commands	163
Access Authentication Control Commands	168
SSH Commands	193
SSL Commands	201
802.1X Commands	207
Access Control List (ACL) Commands	226
Traffic Segmentation Commands	244
Stacking Commands	247
D-Link Single IP Management Commands	251
Time and SNTP Commands	262
ARP Commands	269
VRRP Commands	273
Routing Table Commands	281
Route Redistribution Commands	285
BOOTP Relay Commands	292
DNS Relay Commands	296
RIP Commands	300
DVMRP Commands	303
PIM Commands	308
IP Multicasting Commands	312
MD5 Configuration Commands	314
OSPF Configuration Commands	317
Route Preference Commands	338
Jumbo Frame Commands	342
File System Commands	344
Command History List	352

D-Link 3324SRi Reference Manual - Page 232

create access_profile IP, Internet Group Management Protocol IGMP field.

Page 232 highlights