Dell PowerConnect 3348 User's Guide - Page 200

www.dell.com | support.dell.com Assigning IP-based ACEs to ACLs Using the CLI Commands The following table summarizes the equivalent CLI commands for assigning IP-based ACEs to ACLs as displayed in the Add ACE to IP Based ACL page. CLI Command ip access-list name permit {any | protocol} {any | {source source-wildcard}} {any | {destination destinationwildcard}} [dscp dscp number | ipprecedence ip-precedence] deny [disable-port] {any| protocol} {any | {source sourcewildcard}} {any | {destination destination-wildcard}} [dscp dscp number | ip-precedence ipprecedence] Description Enters to IP-Access list configuration mode. Allows traffic if the conditions defined in the permit statement are matched. Denies traffic if the conditions defined in the deny statement are matched. The following is an example of the CLI commands: Permit 00:00:bo:11:11:11 0:0:0:0:0:0 any VLAN 4 deny 00:00:bo:11:11:11 0:0:0:0:0:0 any VLAN 4 Defining MAC-Based ACLs The Add ACE to MAC Based ACL page allows network administrators to define MACbased Access Control Entry (ACE) and Access Control Lists (ACLs). ACEs act as filters to match packets to forwarding criteria. To open the Add ACE to MAC Based ACL: • Select Switch > Network Security > MAC Based ACL. The Add ACE to MAC Based ACL page opens. 200 Configuring Switch Infor mation