Manualshelf

ProLiant BL p-Class GbE2 Interconnect Switch Application Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProLiant BL p-Class C-GbE2 Interconnect Switch
71727374757677787980
Quality of Service 76
ACLs can be grouped in the following manner:
Access Control Lists
Access Control Lists (ACLs) allow you to classify packets according to a particular content in the packet
header, such as the source address, destination address, source port number, destination port number, and
others. Packet classifiers identify flows for more processing.
The GbE2 supports up to 4096 ACLs. Each ACL defines one filter rule. Each filter rule is a collection of
matching criteria, and can include an action (permit or deny the packet). For example:
ACL 1:
VLAN = 1
SIP = 10.10.10.1 (255.255.255.0)
Action = permit
Access Control Blocks
An Access Control Block (ACL Block) is a collection of ACLs that define filtering criteria on the same set of
fields and within the same mask. Each ACL in an ACL Block must match the same parameters and the same
mask, range, and packet format type. For example:
ACL Block 1
ACL 1:
VLAN = 1
SIP = 10.10.10.1 (255.255.255.0)
Action = permit
ACL 2:
VLAN = 2
SIP = 10.10.10.2 (255.255.255.0)
Action = deny
ACL Block 2
ACL 3:
PRI = 0
SIP = 20.20.20.1 (255.255.0.0)
Action = deny
ACL 4:
PRI = 1
DIP = 20.20.20.2 (255.255.0.0)
Action = deny
All ACLs within an ACL Block remain at the same precedence level. Use ACL Blocks to define a number of
ACLs that do not require different precedence levels, and therefore utilize only one of the eight available
precedence levels. The GbE2 supports up to 4096 ACL Blocks.
Access Control Groups
An Access Control Group (ACL Group) is a collection of ACLs and ACL Blocks. For example:
ACL Group 1
ACLBLK 1
ACL 1:
VLAN = 1
SIP = 10.10.10.1 (255.255.255.0)
Action = permit
ACL 2:
VLAN = 2
SIP = 10.10.10.2 (255.255.255.0)
Action = deny
ACL 3:
PRI = 0
SIP = 20.20.20.1 (255.255.0.0)
Action = deny
In the example above, ACLBLK 1 can contain several ACLs, with each ACL defining a filter rule. ACLBLK 1
has a higher precedence than ACL 3, based on its position in the ACL Group.
Use ACL Groups to create a traffic profile by gathering ACLs and ACL Blocks into an ACL Group, and
assigning the ACL Group to a port. The GbE2 Interconnect Switch supports up to 4096 ACL Groups.