![Qtech QSW-8200-52T-AC — руководство пользователя: Команды для ACL и их использование [12/114]](/img/pdf.png)
Qtech QSW-8200-52T-AC — руководство пользователя: Команды для ACL и их использование [12/114]
Превью страниц
Страница 12 /
114
![Qtech QSW-8200-52T-AC-DC [12/114] Access list mac extended](/views2/1596645/page12/bgc.png)
User Manual
Chapter 1. Commands for ACL 12
www.qtech.ru
20(0x14): PIM V1 packet
Particular notice: The packet types included here are not the types excluding IP
OPTION. Normally, IGMP packet contains OPTION fields, and such configuration is of no
use for this type of packet. If you want to configure the packets containing OPTION,
please directly use the manner where OFFSET is configured.
Examples: Create the numeric extended access-list whose serial No. is 110. deny icmp
packet to pass, and permit udp packet with destination address 192. 168. 0. 1 and
destination port 32 to pass.
Switch(config)#access-list 110 deny icmp any any-destination
Switch(config)#access-list 110 permit udp any host-destination 192.168.0.1 d-port 32
1.5 access-list (ip standard)
Command: access-list <num> {deny | permit} {{<sIpAddr> <sMask >} | any-source|
{host-source <sIpAddr>}}
no access-list <num>
Functions: Create a numeric standard IP access-list. If this access-list exists, then add a
rule list; the “no access-list <num>“ operation of this command is to delete a numeric
standard IP access-list.
Parameters: <num> is the No. of access-list, 100-199; <sIpAddr> is the source IP
address, the format is dotted decimal notation; <sMask > is the reverse mask of source
IP, the format is dotted decimal notation.
Command Mode: Global mode
Default: No access-lists configured.
Usage Guide: When the user assign specific <num> for the first time, ACL of the serial
number is created, then the lists are added into this ACL.
Examples: Create a numeric standard IP access-list whose serial No. is 20, and permit
date packets with source address of 10.1.1.0/24 to pass, and deny other packets with
source address of 10.1.1.0/16.
Switch(config)#access-list 20 permit 10.1.1.0 0.0.0.255
Switch(config)#access-list 20 deny 10.1.1.0 0.0.255.255
1.6 access-list(mac extended)
Command: access-list <num> {deny | permit} {any-source-mac | {host-source-mac
<host_smac>} | {<smac> <smac-mask>}} {any-destination-mac | {host-destination-
mac <host_dmac>} | {<dmac> <dmac-mask>}} {untagged-eth2 | tagged-eth2 |
untagged-802-3 | tagged-802-3} [<offset1> <length1> <value1> [ <offset2> <length2>
<value2> [ <offset3> <length3> <value3> [ <offset4> <length4> <value4> ]]]]]
no access-list <num>
Содержание
- Content p.2
- Show pppoe intermediate agent info 97 p.7
- Show pppoe intermediate agent identifier string option delimiter 97 p.7
- Show pppoe intermediate agent access node id 97 p.7
- Pppoe intermediate agent vendor tag strip 96 p.7
- Pppoe intermediate agent type tr 101 circuit id identifier string option delimiter 95 p.7
- Pppoe intermediate agent type tr 101 circuit id access node id 95 p.7
- Pppoe intermediate agent type self defined remoteid 94 p.7
- Pppoe intermediate agent type self defined circuit id 94 p.7
- Pppoe intermediate agent trust 93 p.7
- Commands for savi 99 p.7
- Commands for monitor and debug 105 p.7
- Chapter 11 commands for savi 99 p.7
- Chapter 1 commands for acl p.9
- Absolute periodic periodic p.9
- Access list deny preemption p.10
- Access list ip extended p.10
- Absolute start p.10
- Access list mac extended p.12
- Access list ip standard p.12
- Access list mac ip extended p.13
- Access list mac standard p.15
- Ip access extended p.16
- Firewall default p.16
- Firewall p.16
- Clear access group in out statistic interface p.16
- Ipv6 access list p.17
- Ip access standard p.17
- Ipv6 access standard p.18
- Ipv6 access extended p.19
- Ip ipv6 mac mac ip access group p.19
- Mac access extended p.20
- Ip ipv6 mac mac ip access group interface mode p.20
- Permit deny ip extended p.21
- Mac ip access extended p.21
- Permit deny ip standard p.22
- Permit deny ipv6 extended p.23
- Permit deny mac extended p.24
- Permit deny ipv6 standard p.24
- Permit deny mac ip extended p.26
- Show access lists p.28
- Show access group p.29
- Show ipv6 access lists p.30
- Show firewall p.30
- Show time range p.31
- Time range p.31
- Debug dot1x error p.33
- Debug dot1x detail p.33
- Chapter 2 commands for 802 x p.33
- Debug dot1x packet p.34
- Debug dot1x fsm p.34
- Dot1x eapor enable p.35
- Dot1x accept mac p.35
- Dot1x ipv6 passthrough p.36
- Dot1x guest vlan p.36
- Dot1x enable p.36
- Dot1x macfilter enable p.37
- Dot1x macbased guest vlan p.37
- Dot1x max req p.38
- Dot1x macbased port down flush p.38
- Dot1x user allow movement p.39
- Dot1x user free resource p.39
- Dot1x max user userbased p.40
- Dot1x max user macbased p.40
- Dot1x portbased mode single mode p.41
- Dot1x port control p.41
- Dot1x privateclient enable p.42
- Dot1x port method p.42
- Dot1x re authentication p.43
- Dot1x re authenticate p.43
- Dot1x privateclient protect enable p.43
- Dot1x timeout re authperiod p.44
- Dot1x timeout quiet period p.44
- Dot1x web authentication ipv6 passthrough p.45
- Dot1x web authentication enable p.45
- Dot1x unicast enable p.45
- Dot1x timeout tx period p.45
- Show dot1x p.46
- Dot1x web redirect enable p.46
- Dot1x web redirect p.46
- User control limit ipv6 p.48
- User control limit ipv4 p.48
- Function of mac and ip in port vlan p.50
- Debug ipv6 nd count p.50
- Debug ip arp count p.50
- Chapter 3 commands for the number limitation p.50
- Debug switchport mac count p.51
- Debug switchport arp count p.51
- Debug vlan mac count p.52
- Debug switchport nd count p.52
- Ipv6 nd dynamic maximum p.53
- Ip arp dynamic maximum p.53
- Mac address query timeout p.54
- Show arp dynamic count p.54
- Show nd dynamic count p.55
- Show mac address dynamic count p.55
- Switchport mac address dynamic maximum p.56
- Switchport arp dynamic maximum p.56
- Switchport mac address violation p.57
- Vlan mac address dynamic maximum p.58
- Switchport nd dynamic maximum p.58
- Chapter 4 commands for am configuration p.60
- Am port p.60
- Am ip pool p.60
- Am enable p.60
- Show am p.61
- No am all p.61
- Am mac ip pool p.61
- Aaa accounting enable p.63
- Chapter 5 commands for radius p.63
- Aaa enable p.63
- Aaa accounting update p.63
- Debug aaa packet p.64
- Debug aaa detail attribute p.64
- Debug aaa error p.65
- Debug aaa detail event p.65
- Debug aaa detail connection p.65
- Radius nas ipv6 p.66
- Radius nas ipv4 p.66
- Radius server accounting host p.67
- Radius server authentication host p.68
- Radius server retransmit p.69
- Radius server key p.69
- Radius server dead time p.69
- Radius server accounting interim update timeout p.70
- Radius server timeout p.70
- Show aaa authenticated user p.71
- Show aaa config p.72
- Show aaa authenticating user p.72
- Show radius authenticating user count p.73
- Show radius authenticated user count p.73
- Show radius count p.74
- Ip http secure server p.75
- Ip http secure port p.75
- Ip http secure ciphersuite p.75
- Chapter 6 commands for ssl configuration p.75
- Show ip http secure server status p.76
- Debug ssl p.76
- Show ipv6 security ra p.77
- Ipv6 security ra enable p.77
- Chapter 7 commands for ipv6 security ra p.77
- Debug ipv6 security ra p.78
- Show vacl vlan p.79
- Clear vacl statistic vlan p.79
- Chapter 8 commands for vlan acl p.79
- Vacl ipv6 access group p.81
- Vacl ip access group p.81
- Vacl mac ip access group p.82
- Vacl mac access group p.82
- Clear mac authentication bypass binding p.83
- Chapter 9 commands for mab p.83
- Authentication mab p.83
- Mac authentication bypass enable p.84
- Mac authentication bypass binding limit p.84
- Debug mac authentication bypass p.84
- Mac authentication bypass spoofing garp check p.85
- Mac authentication bypass guest vlan p.85
- Mac authentication bypass timeout linkup period p.85
- Mac authentication bypass timeout quiet period p.86
- Mac authentication bypass timeout offline detect p.86
- Mac authentication bypass username format p.87
- Mac authentication bypass timeout stale period p.87
- Mac authentication bypass timeout reauth period p.87
- Show mac authentication bypass p.88
- Pppoe intermediate agent p.91
- Debug pppoe intermediate agent packet receive send interface p.91
- Chapter 10 commands for pppoe intermediate agent p.91
- Pppoe intermediate agent port p.92
- Pppoe intermediate agent delimiter p.92
- Pppoe intermediate agent circuit id p.92
- Pppoe intermediate agent trust p.93
- Pppoe intermediate agent remote id p.93
- Pppoe intermediate agent format p.93
- Pppoe intermediate agent type self defined remoteid p.94
- Pppoe intermediate agent type self defined circuit id p.94
- Pppoe intermediate agent type tr 101 circuit id identifier string option p.95
- Pppoe intermediate agent type tr 101 circuit id access node id p.95
- Delimiter p.95
- Pppoe intermediate agent vendor tag strip p.96
- Show pppoe intermediate agent info p.97
- Show pppoe intermediate agent identifier string option delimiter p.97
- Show pppoe intermediate agent access node id p.97
- Commands for savi p.99
- Chapter 11 commands for savi p.99
- Commands for monitor and debug p.105
- Debug webportal error p.109
- Debug webportal binding p.109
- Clear webportal binding p.109
- Chapter 12 commands for web portal configuration p.109
- Debug webportal packet p.110
- Debug webportal event p.110
- Show webportal p.111
- Ip dhcp snooping binding webportal p.111
- Webportal binding limit p.112
- Show webportal binding p.112
- Webportal nas ip p.113
- Webportal enable port p.113
- Webportal enable p.113
- Webportal redirect p.114
Похожие устройства
-
Qtech QSW-1500-20EF-POE-ACТехнические характеристики -
Qtech QSW-1500-19EF-POE-AC V3Описание параметров
-
Qtech QSW-1500-10E-POE-DОписание параметров
-
Qtech QSW-1500-6E-POE-DПодробное техническое описание
-
Qtech QSW-4610Инструкция пользователя -
Qtech QSW-3750 REV. RИнструкция пользователя
-
Qtech QSW-3750Руководство по эксплуатации
-
Qtech QSW-3420Инструкция по применению
-
Qtech QSW-9000-01Руководство по управлению -
Qtech QSW-9000-01Руководство по настройке -
Qtech QSW-9000-01Руководство по настройке управления -
Qtech QSW-9000-01Руководство по командам
Изучите команды для настройки списков доступа (ACL) в сетевых устройствах. Узнайте, как создавать, изменять и удалять правила для управления трафиком.