User`s manual
244
DWS-1008 User’s Manual
D-Link Systems, Inc.
Conguring and Managing Security ACLs
Displaying ACL Maps to Ports, VLANs, and Virtual Ports
Two commands display the port, VLAN, virtual port, and Distributed AP mapping of a specic
security ACL. For example, to show the ports, VLANs, virtual ports, and Distributed APs
mapped to acl-999, type one of the following commands:
DWS-1008# show security acl map acl-999
ACL acl-999 is mapped to:
Port 9 In
Port 9 Out
DWS-1008# show security acl
ACL table
ACL Type Class Mapping
-------------------------------------------------------------
acl-orange IP Static Port 9 In
acl-999 IP Static Port 9 Out
acl-blue IP Static Port 1 In
acl-violet IP Static VLAN 1 Out
Clearing a Security ACL Map
To clear the mapping between a security ACL and one or more ports, VLANs, virtual ports, or
Distributed APS, rst display the mapping with show security acl map and then use clear
security acl map to remove it. This command removes the mapping, but not the ACL.
For example, to clear the security ACL acljoe from a port, type the following commands:
DWS-1008# show security acl map acljoe
ACL acljoe is mapped to:
Port 4 In
DWS-1008# clear security acl map acljoe port 4 in
success: change accepted.
After you clear the mapping between port 4 and ACL acljoe, the following is displayed when
you enter show security acl map:
DWS-1008# show security acl map acljoe
ACL acljoe is mapped to:
Clearing a security ACL mapping does not stop the current ltering function if the ACL has
other mappings. If the security ACL is mapped to another port, a VLAN, a virtual port, or a
Distributed AP, you must enter a clear security acl map command to clear each map.
To stop the packet ltering of a user-based security ACL, you must modify the user’s