3Com Switch 7750 Configuration Guide Guide
604 CHAPTER 57: ACL CONFIGURATION
rule-string: rule information, which can be combination of the parameters
described in
Table 476.
Define an ACL rule
rule [ rule-id ] { permit | deny
} [ rule-string ]
Required
If you do not specify the
rule-string parameter, the
switch will choose ingress
any egress any by default.
Display ACL information
display acl config { all |
acl-number | acl-name }
Optional
This command can be
executed in any view.
Tabl e 476 Rule information
Parameter Type Function Description
protocol-type Protocol type
Defines the protocol
type over Ethernet
frames
protocol-type: the
value can be ip, arp,
rarp, ipx, nbx,
pppoe-control, or
pppoe-data.
format-type
Link layer
encapsulation type
Defines the link layer
encapsulation type in
the rule
format-type: the value
can be 802.3/802.2,
802.3, ether_ii, or
snap.
ingress { {
source-vlan-id |
source-mac-addr [
source-mac-mask ] }*
| any }
Source MAC address
information
Specifies the source
MAC address range in
the ACL rule
source-mac-addr:
source MAC address,
in the format of
H-H-H
source-mac-mask:
source MAC address
mask, in the format of
H-H-H, defaults to
ffff-ffff-ffff.
source-vlan-id: source
VLAN ID, in the range
of 1 to 4,094
any represents all
packets received from
all ports.
egress {
dest-mac-addr [
dest-mac-mask ] | any
}
Destination MAC
address information
Specifies the
destination MAC
address range in the
ACL rule
dest-mac-addr:
destination MAC
address, in the format
of H-H-H
dest-mac-mask:
destination MAC
address mask, in the
format of H-H-H,
defaults to
ffff-ffff-ffff.
any represents all
packets forwarded by
all ports.
cos cos Priority
Defines the 802.1p
priority of the ACL
rule
cos: ranges from 0 to
7
Table 475 Create a Layer 2 ACL rule
Operation Command Description