Manualshelf

User's Manual

ManualsBrandsSMC Networks ManualsNetworkingSMC6824M
421422423424425426427428429430
C
OMMAND
L
INE
I
NTERFACE
4-129
access-list ip mask-precedence
This command changes to the IP Mask mode used to configure access
control masks. Use the no form to delete the mask table.
Syntax
[no] access-list ip mask-precedence {in | out}
in – Ingress mask for ingress ACLs.
out Egress mask for egress ACLs.
Default Setting
Default system mask: Filter inbound packets according to specified IP
ACLs.
Command Mode
Global Configuration
Command Usage
A mask can only be used by all ingress ACLs or all egress ACLs.
The precedence of the ACL rules applied to a packet is not determined
by order of the rules, but instead by the order of the masks; i.e., the first
mask that matches a rule will determine the rule that is applied to a
packet.
You must configure a mask for an ACL rule before you can bind it to a
port or set the queue or frame priorities associated with the rule.
Example
Related Commands
mask (IP ACL) (4-130)
ip access-group (4-134)
Console(config)#access-list ip mask-precedence in
Console(config-ip-mask-acl)#