Home
Главная
Qtech
Коммутаторы
QSW-3200-28T
Руководство пользователя Страница: 63

Qtech QSW-3200-28T Руководство пользователя онлайн [63/136] 481609

+7(495) 797-3311www.qtech.ru

Москва, Новозаводская ул., 18, стр. 1

Ctrl field

TCP destination interface

org code field

Sequence number

Encapsulated data type

Confirm field

IP version number

Length of IP head and reserved

byte

TOS field

Reserved byte and flags byte

Length of IP packet

Window Size field

ID number

Others

Flags field

In user-defined ACL, user can using rule mask and offset value to extract any byte of the first

64 bytes from data frame to compare with user-defined rule to filtrate matched data frame to

make corresponded handling. User-defined rule can be some fixed attribution of data, such as:

user can define rule to be «06» , rule mask to be «FF» , offset value to be 35. rule mask and

offset value can extract TCP protocol byte content of received data frame to compare with rule

to match all TCP packet.

(1) Define user-defined ACL based on number ID

User-defined ACL based on number ID is using number to be ID of user-defined ACL. Use

following command to define user-defined ACL based on number ID.

Use following command to define user-defined ACL with number ID.

Configure it in global configuration mode.

Define user-defined ACL with number ID.

access-list access-list-number4 { permit | deny } { rule-string rule-mask offset }&<1-20> [

ingress interface interface-num ] [ egress interface interface-num | cpu ] [ time-range time-

range-name ]

Define the matching order of ACL:

access-list access-list-number match-order { config | auto }

Delete all the subitems or one subitem in one ACL with number ID or name ID or all ACLs.

no access-list { all | { access-list-number | name access-list-name } [ subitem ] }

Use access-list command repeatedly to define more rules for the same ACL.

The number ID of user-defined ACL is in the range of 300 to 399. Concrete parameter

meaning refers to corresponded command line.

(2) Define standard ACL with name ID.

Standard ACL with name ID is using name ID to identify standard ACL.

Instruction:

Defining user-defined ACL with name ID should enter specified configuration mode: use

access-list user in global configuration mode which can specify matching order of ACL. Use

exit command to be back from this mode.

Use following commands to define user-defined ACL with name ID. Configure it in

corresponded mode.

Enter user-defined ACL with name ID configuration mode (global configuration mode)

access-list user name [ match-order { config | auto } ]

Defining user-defined ACL rule (user-defined ACL with name ID configuration mode)

{ permit | deny } { rule-string rule-mask offset }&<1-20> [ ingress interface interface-num ] [

egress interface interface-num | cpu ] [ time-range time-range-name ]

Qtech QSW-3200-28T Руководство пользователя онлайн [63/136] 481609

Содержание

Похожие устройства