Manualshelf

Reference Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S4810P
281282283284285286287288289290
When you use the log option, the CP processor logs details about the packets that match.
Depending on how many packets match the log entry and at what rate, the CP may become
busy as it has to log these packets’ details.
You cannot include IP, TCP, or UDP (Layer 3) filters in an ACL configured with ARP or Ether-
type (Layer 2) filters. Apply Layer 2 ACLs to interfaces in Layer 2 mode.
NOTE: When ACL logging and byte counters are configured simultaneously, byte counters
may display an incorrect value. Configure packet counters with logging instead.
seq ether-type
Configure an egress filter with a specific sequence number that filters traffic with specified types of Ethernet packets.
This command is supported only on 12-port GE line cards with SFP optics. For specifications, refer to your line card
documentation.
E-Series
Syntax
seq sequence-number {deny | permit} ether-type protocol-type-
number {destination-mac-address mac-address-mask | any} vlan
vlan-id {source-mac-address mac-address-mask | any} [count
[byte] | log] [order] [monitor]
To remove this filter, use the no seq
sequence-number
command.
Parameters
sequence-
number
Enter a number from 0 to 4294967290.
deny Enter the keyword deny to drop all traffic meeting the filter criteria..
permit Enter the keyword permit to forward all traffic meeting the filter
criteria.
destination-mac-
address mac-
address-mask
Enter a MAC address and mask in the nn:nn:nn:nn:nn format.
For the MAC address mask, specify which bits in the MAC address
must match.
The MAC ACL supports an inverse mask; therefore, a mask of
ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of
00:00:00:00:00:00 only allows entries that match exactly.
any Enter the keyword any to match and drop specific Ethernet traffic on
the interface.
vlan
vlan-id
Enter the keyword vlan and then enter the VLAN ID to filter traffic
associated with a specific VLAN. The range is 1 to 4094 and 1 to 2094
for ExaScale (you can use IDs 1 to 4094). To filter all VLAN traffic
specify VLAN 1.
source-mac-
address mac-
address-mask
Enter a MAC address and mask in the nn:nn:nn:nn:nn format.
For the MAC address mask, specify which bits in the MAC address
must match.
The MAC ACL supports an inverse mask; therefore, a mask of
ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of
00:00:00:00:00:00 only allows entries that match exactly.
283