User manual
C
HAPTER
5
| Monitoring the Switch
Displaying Information About Security Settings
– 238 –
■
Port: The ACE will match a specific ingress port.
◆ Frame Type – Indicates the frame type to which the ACE applies.
Possible values are:
■
Any: The ACE will match any frame type.
■
EType: The ACE will match Ethernet Type frames. Note that an
Ethernet Type based ACE will not get matched by IP and ARP
frames.
■
ARP: ACE will match ARP/RARP frames.
■
IPv4: ACE will match all IPv4 frames.
■
IPv4/ICMP: ACE will match IPv4 frames with ICMP protocol.
■
IPv4/UDP: ACE will match IPv4 frames with UDP protocol.
■
IPv4/TCP: ACE will match IPv4 frames with TCP protocol.
■
IPv4/Other: ACE will match IPv4 frames, which are not ICMP/UDP
or TCP.
◆ Action – Indicates the forwarding action of the ACE:
■
Permit: Frames matching the ACE may be forwarded and learned.
■
Deny: Frames matching the ACE are dropped.
◆ Rate Limiter – Indicates the rate limiter number implemented by the
ACE. The allowed range is 1 to 15.
◆ Port Redirect – Indicates the port redirect operation implemented by
the ACE. Frames matching the ACE are redirected to the listed port.
◆ CPU – Forwards packet that matched the specific ACE to the CPU.
◆ CPU Once – Forwards first packet that matched the specific ACE to the
CPU.
◆ Counter – The number of times the ACE was matched by a frame.
◆ Conflict – This field shows “Yes” if a specific ACE is not applied due to
hardware limitations.
WEB INTERFACE
To display ACL status:
1. Click Monitor, Security, Network, ACL Status.
2. Select a software module from the scroll-down list.
Figure 111: ACL Status