Manualshelf

Technical data

ManualsBrandsBlade Network Technologies ManualsComputer AccessoriesG8000
101102103104105106107108109110
BLADE OS 5.1 Application Guide
BMD00136, November 2009 Chapter 7: Quality of Service
103
Access Control List Groups
An Access Control List Group (ACL Group) is a collection of ACLs. For example:
ACL Groups organize ACLs into traffic profiles that can be more easily assigned to ports. The
G8000 supports up to 640 ACL Groups.
Note – ACL Groups are used for convenience in assigning multiple ACLs to ports. ACL Groups
have no effect on the ACL order of precedence. All ACLs assigned to the port (whether individually
assigned or part of an ACL Group) are considered as individual ACLs for the purposes of
determining their order of precedence.
Assigning ACLs to a Port
Once you configure an ACL, you must assign the ACL to a port. Each port can accept multiple
ACLs. Note that higher-priority ACLs are considered first, and their action takes precedence over
lower-priority ACLs.
When you assign an ACL to a port, the ACL acts only upon ingress traffic, not egress traffic.
To assign an ACL to a port, use the following command:
To assign an ACL Group to a port, use the following command:
ACL Group 1
ACL 1:
VLAN = 1
SIP = 10.10.10.1 (255.255.255.0)
Action = permit
ACL 2:
VLAN = 2
SIP = 10.10.10.2 (255.255.255.0)
Action = deny
ACL 3:
Priority = 7
DIP = 10.10.10.3 (255.255.255.0)
Action = permit
# access-control list <ACL number>
# access-control group <ACL group number>