System information
280
DWS-1008 CLI Reference Guide
D-Link Systems, Inc.
Security ACL Commands
set security acl map
Assigns a committed security ACL to a VLAN, physical port or ports, virtual port, or Distributed
AP on the switch.
Note: To assign a security ACL to a user or group in the local database, use the command set
user attr, set mac-user attr, set usergroup attr, or set mac-usergroup attr with the Filter-Id
attribute. To assign a security ACL to a user or group with Filter-Id on a RADIUS server, see
the documentation for your RADIUS server.
Syntax: set security acl map acl-name {vlan vlan-id | port port-list [tag tag-list] | dap
dap-num} {in | out}
acl-name Name of an existing security ACL to map. ACL names start with a
letter and are case-insensitive.
vlan vlan-id VLAN name or number. MSS assigns the security ACL to the
specified VLAN.
port port-list Port list. MSS assigns the security ACL to the specified physical
switch port or ports.
tag tag-list One or more values that identify a virtual port in a VLAN. Specify a
single tag value from 1 through 4095. Or specify a comma-separated
list of values, a hyphen-separated range, or any combination, with
no spaces. MSS assigns the security ACL to the specified virtual port
or ports.
dap dap-num One or more Distributed DWL-8220APs, based on their connection
IDs. Specify a single connection ID, or specify a comma-separated
list of connection IDs, a hyphen-separated range, or any
combination, with no spaces. MSS assigns the security ACL to the
specified Distributed DWL-8220APs.
in Assigns the security ACL to traffic coming into the switch.
out Assigns the security ACL to traffic coming from the switch.
Defaults: None
Access: Enabled
Usage: Before you can map a security ACL, you must use the commit security acl command
to save the ACL in the running configuration and nonvolatile storage.
For best results, map only one input security ACL and one output security ACL to each
VLAN, physical port, virtual port, or Distributed AP to filter a flow of packets. If more than one
security ACL filters the same traffic, MSS applies only the first ACL match and ignores any
other matches.