Home » TP-Link Manuals » Hubs & Switches » TP-Link TL-SL5428E » Manual Viewer

TP-Link TL-SL5428E User Guide - Page 153

acl rule mac-acl

UPC - 845973020873

Add to My Manuals
Save this manual to your list of manuals

Page 153 highlights

TL-SL5428E 24-port 10/100Mbps + 4-port Gigabit L2 Managed Switch CLI Guide ACL, please use no acl create command. Syntax acl create id no acl create id Parameter id -- ACL ID, ranging from 0 to 299. 0-99 must be MAC ACL, 100-199 must be Standard-IP ACL, and 200-299 must be Extend-IP ACL. Command Mode Global Configuration Mode Example Create a MAC ACL whose ID is 20: TP-LINK(config)# acl create 20 acl rule mac-acl Description The acl rule mac-acl command is used to add MAC ACL rule. To delete the corresponding rule, please use no acl rule mac-acl command. MAC ACLs analyze and process packets based on a series of match conditions, which can be the source MAC addresses, destination MAC addresses, VLAN ID, and EtherType carried in the packets. Syntax acl rule mac-acl {acl-id} {rule-id} [op { discard | permit }] [[smac source-mac] {smask source-mac-mask}] [[dmac destination-mac] {dmask destination-mac-mask}] [vid vlan-id] [type Ethernet-type] [pri user-pri] [tseg time-segment] no acl rule mac-acl {acl-id} {rule-id} Parameter acl-id -- The desired MAC ACL for configuration. rule-id -- The rule ID. op -- The operation for the switch to process packets which match the rules. There are two options, discard and permit. Discard means discarding packets, and permit means forwarding packets. By default, the option is permit. source-mac -- The source MAC address contained in the rule. 141

Section	Page
Preface	13
Chapter 1 Using the CLI	16
1.1 Accessing the CLI	16
1.1.1 Logon by a console port	16
1.1.2 Logon by Telnet	18
1.2 CLI Command Modes	20
1.3 Security Levels	23
1.4 Conventions	23
1.4.1 Format Conventions	23
1.4.2 Special Characters	23
1.4.3 Parameter Format	24
Chapter 2 User Interface	25
enable	25
enable password	25
disable	26
configure	26
exit	26
end	27
Chapter 3 IEEE 802.1Q VLAN Commands	28
vlan database	28
vlan	28
interface vlan	29
description	29
switchport type	30
switchport allowed vlan	30
switchport pvid	31
switchport general egress-rule	31
show vlan	32
show interface switchport	32
Chapter 4 MAC VLAN Commands	33
mac-vlan add	33
mac-vlan remove	33
mac-vlan modify	34
mac-vlan interface	34
show mac-vlan	35
show mac-vlan interface	35
Chapter 5 Protocol VLAN Commands	36
protocol-vlan template	36
protocol-vlan vlan	36
protocol-vlan interface	37
show protocol-vlan template	38
show protocol-vlan vlan	38
show protocol-vlan interface	38
Chapter 6 VLAN-VPN Commands	40
vlan-vpn enable	40
vlan-vpn tpid	40
vlan-vpn vlan-mapping add	41
vlan-vpn vlan-mapping modify	41
vlan-vpn vlan-mapping remove	42
vlan-vpn vlan-mapping interface	42
vlan-vpn uplink	43
show vlan-vpn global	43
show vlan-vpn uplink	44
show vlan-vpn vlan-mapping	44
show vlan-vpn vlan-mapping interface	45
Chapter 7 Voice VLAN Commands	46
voice-vlan enable	46
voice-vlan aging-time	46
voice-vlan priority	47
voice-vlan oui	47
switchport voice-vlan mode	48
switchport voice-vlan security	49
show voice-vlan global	49
show voice-vlan oui	50
show voice-vlan switchport	50
Chapter 8 GVRP Commands	51
gvrp	51
gvrp (interface)	51
gvrp registration	52
gvrp timer	52
show gvrp global	53
show gvrp interface	54
Chapter 9 LAG Commands	55
interface link-aggregation	55
interface range link-aggregation	55
link-aggregation	56
link-aggregation hash-algorithm	57
description	57
show interfaces link-aggregation	58
Chapter 10 LACP Commands	59
lacp	59
lacp (interface)	59
lacp admin-key	60
lacp system-priority	60
lacp port-priority	61
show lacp	61
show lacp interface	62
Chapter 11 User Manage Commands	63
user add	63
user remove	64
user modify status	64
user modify type	65
user modify password	65
user access-control disable	66
user access-control ip-based	66
user access-control mac-based	67
user access-control port-based	67
user max-number	68
user idle-timeout	68
show user account-list	69
show user configuration	69
Chapter 12 Binging Table Commands	71
binding-table user-bind	71
binding-table remove	72
dhcp-snooping	72
dhcp-snooping global	73
dhcp-snooping information enable	74
dhcp-snooping information strategy	74
dhcp-snooping information user-defined	75
dhcp-snooping information remote-id	75
dhcp-snooping information circuit-id	76
dhcp-snooping trusted	76
dhcp-snooping mac-verify	77
dhcp-snooping rate-limit	77
dhcp-snooping decline	78
show binding-table	79
show dhcp-snooping global	79
show dhcp-snooping information	79
show dhcp-snooping interface	80
Chapter 13 ARP Inspection Commands	81
arp detection (global)	81
arp detection trust-port	81
arp detection (interface)	82
arp detection limit-rate	82
arp detection recover	83
show arp detection global	84
show arp detection interface	84
show arp detection statistic	85
arp detection reset-statistic	85
Chapter 14 IP Source Guard Commands	86
ip source guard	86
show ip source guard	87
Chapter 15 DoS Defend Command	88
dos-prevent	88
dos-prevent global	88
dos-prevent type	89
dos-prevent detect	90
dos-prevent reset-statistic	90
show dos-prevent	91
Chapter 16 IEEE 802.1X Commands	92
dot1x	92
dot1x authentication-method	92
dot1x guest-vlan	93
dot1x quiet-period	94
dot1x timer	94
dot1x retry	95
dot1x	95
dot1x guest-vlan	96
dot1x port-control	96
dot1x port-method	97
radius authentication primary-ip	98
radius authentication secondary-ip	99
radius authentication port	99
radius authentication key	100
radius accounting enable	100
radius accounting primary-ip	101
radius accounting secondary-ip	101
radius accounting port	102
radius accounting key	102
radius response-timeout	103
show dot1x global	104
show dot1x interface	104
show radius authentication	105
show radius accounting	105
Chapter 17 Log Commands	106
logging local buffer	106
logging local flash	107
logging clear	107
logging loghost	108
show logging local-config	109
show logging loghost	109
show logging buffer	110
show logging flash	110
Chapter 18 SSH Commands	112
ssh server enable	112
ssh version	112
ssh idle-timeout	113
ssh max-client	113
ssh download	114
show ssh	114
Chapter 19 SSL Commands	116
ssl enable	116
ssl download certificate	116
ssl download key	117
show ssl	117
Chapter 20 Address Commands	119
bridge address port-security	119
bridge address static	120
bridge aging-time	121
bridge address filtering	121
show bridge dynamic-bind	122
show bridge address	122
show bridge aging-time	123
Chapter 21 System Commands	124
system-descript	124
ip address	124
ip dhcp-alloc	125
ip bootp-alloc	125
reset	126
reboot	126
user-config backup	127
user-config load	127
user-config save	128
firmware upgrade	128
ping	129
tracert	129
loopback	130
show system-info	131
show ip address	131
Chapter 22 Ethernet Configuration Commands	132
interface Ethernet	132
interface range Ethernet	132
description	133
shutdown	133
flow-control	134
negotiation	134
storm-control	135
storm-control disable bc-rate	136
storm-control disable mc-rate	136
storm-control disable ul-rate	137
port rate-limit	137
port rate-limit disable ingress	138
port rate-limit disable egress	138
show interface configuration	139
show interface status	139
show interface counters	140
show storm-control Ethernet	140
show port rate-limit	141
Chapter 23 QoS Commands	142
qos	142
qos dot1p enable	142
qos dot1p config	143
qos dscp enable	144
qos dscp config	144
qos scheduler	145
show qos port-based	146
show qos dot1p	147
show qos dscp	147
show qos scheduler	147
Chapter 24 Port Mirror Commands	149
port mirror	149
port mirrored	149
show port mirror	150
Chapter 25 ACL Commands	151
acl time-segment	151
acl holiday	152
acl create	152
acl rule mac-acl	153
acl rule std-acl	154
acl policy policy-add	155
acl policy action-add	156
acl bind to-port	157
acl bind to-vlan	158
show acl time-segment	158
show acl holiday	159
show acl config	159
show acl bind	159
Chapter 26 MSTP Commands	161
spanning-tree global	161
spanning-tree common-config	162
spanning-tree region	163
spanning-tree msti	164
spanning-tree msti	165
spanning-tree tc-defend	166
spanning-tree security	166
spanning-tree mcheck	167
show spanning-tree global-info	168
show spanning-tree global-config	168
show spanning-tree port-config	168
show spanning-tree region	169
show spanning-tree msti config	169
show spanning-tree msti port	170
show spanning-tree security tc-defend	170
show spanning-tree security port-defend	171
Chapter 27 IGMP Commands	172
igmp global	172
igmp config	172
igmp vlan-config-add	173
igmp vlan-config	174
igmp multi-vlan-config	175
igmp static-entry-add	176
igmp filter-add	177
igmp filter-config	177
igmp filter	178
show igmp global-config	179
show igmp port-config	179
show igmp vlan-config	180
show igmp multi-vlan	180
show igmp multi-ip-list	180
show igmp filter-ip-addr	181
show igmp port-filter	181
show igmp packet-stat	182
show igmp packet-stat-clear	182
Chapter 28 SNMP Commands	183
snmp global	183
snmp view-add	184
snmp group-add	184
snmp user-add	186
snmp community-add	187
snmp notify-add	188
snmp-rmon history sample-cfg	189
snmp-rmon history owner	190
snmp-rmon history enable	190
snmp-rmon event user	191
snmp-rmon event description	192
snmp-rmon event type	192
snmp-rmon event owner	193
snmp-rmon event enable	193
snmp-rmon alarm config	194
snmp-rmon alarm owner	195
snmp-rmon alarm enable	196
show snmp global-config	196
show snmp view	197
show snmp group	197
show snmp user	198
show snmp community	198
show snmp destination-host	198
show snmp-rmon history	199
show snmp-rmon event	199
show snmp-rmon alarm	200
Chapter 29 Cluster Commands	201
cluster ndp	201
cluster ntdp	202
cluster explore	203
cluster	203
cluster create	204
cluster manage config	204
cluster manage member-add	205
cluster manage role-change	205
show cluster ndp global	206
show cluster ndp port-status	206
show cluster neighbour	207
show cluster ntdp global	207
show cluster ntdp port-status	208
show cluster ntdp device	208
show cluster manage config	208