Manualshelf

User's Manual

ManualsBrandsPLANET Technology ManualsBroadband CommunicationL3 14-Port 100/1G SFP with 4 shared 10/100/1000T + 10-Port 1G/2.5G SFP + 4-Port 10G SFP+ Metro Ethernet Switch
51525354555657585960
Table Of Contents
Command Guide
-60-
4.2.13 access management
Command:
access management <AccessId : 1-16> <AccessVid : 1-4095> <AddrRangeStart :
ipv4_addr | ipv6_addr> all | snmp | telnet | to | Web
<AccessId : 1-16> ID of access management entry
<AccessVid : 1-4095> The VLAN ID for the access management entry
<AddrRangeStart : ipv4_addr> Start IPv4 address
<AddrRangeStart : ipv6_addr> Start IPv6 address
all All services
snmp SNMP service
telnet TELNET/SSH service
to End address of the range
web Web service
Default:
access management : disable
Usage Guide:
To enable the access management profile to allow SNMP / Telnet / HTTP services.
Example:
To create a Profile 1 enabling all services for VLAN 1 (IPv6 address 2001::7788) .
Switch# configure terminal
Switch (config)# access management 1 1 2001::7788 all
4.2.14 access-list ace
Command:
access-list ace <AceId : 1-512> action {deny, permit} | dmac-type {any, broadcast,
multicast, unicast} | frametype {any, arp, etype, ipv4, ipv4-icmp, ipv4-tcp, ipv4-udp,
ipv6, ipv6-icmp, ipv6-tcp, ipv6-udp} | ingress {any, interface 10GigabitEthernet |
GigabitEthernet <PORT_ID>} | logging {disable, next, policy, rate-limiter, shutdown,
tag-priority, vid} | next {<AceId : 1-512>, last}| policy <PolicyId : 0-255> | rate-limiter
{<RateLimiterId : 1-16>, disable} | redirect {disable, interface 10GigabitEthernet |
GigabitEthernet <PORT_ID>} | tag-priority {0-1, 0-3, 2-3, 4-5, 4-7, 6-7,
<TagPriority :
0-7>, any} | vid {<Vid : 1-4095>, any}
<AceId : 1-512> ACE ID