Switch User Manual

ManualsBrandsEnterasys Networks ManualsSwitchSECURESTACK 9034313-07

361

362

363

364

365

366

367

368

369

370

clear policy rule

SecureStack C3 Configuration Guide 11-13

ThisexampleshowshowtouseTable 11‐3toassignaruletopolicyprofile1thatwilldropIP

sourcetrafficfromIPaddress1.2.3.4.Ifmask32isnotspecif iedasshown,adefaultmaskof48bits

(IPaddress+port)wouldbeapplied:

C3(su)->set policy rule 1 ipsourcesocket 1.2.3.4 mask 32 drop

clear policy rule

Usethiscommandtodeletepolicyclassificationruleentries.

Syntax

Thiscommandhastwoformsofsyntax—onetoclearan adminrule(forpolicyID0),andtheother

toclearaclassificationrule.

clear policy rule admin-profile {vlantag data [mask mask]

clear policy rule profile-index {all-pid-entries | {ether | ipproto | ipdestsocket

udpdestport | udpsourceport}}

Parameters

Thefollowingparametersapplytodeletinganadminrule.

Thefollowingparametersapplytodeletingaclassificationrule.

admin‐profile SpecifiesthattheruletobedeletedisanadminruleforpolicyID0.

vlantagdata DeletestherulebasedonVLANtagspecifiedbydata.Valueofdatacan

rangefrom

1to4094or0xFFF.

maskmask (Optional)Specifiesthenumberofsignificantbitstomatch,dependent

onthedatavalueentered.Valueofmaskcanrangefrom1to12.

RefertoTable 11‐3forvalidvaluesforeachclassificationtypeanddata

value.

profile‐index Specifiesapolicyprofileforwhichtodeleteclassificationrules.Valid

profile‐indexvaluesare1‐255.

all‐pid‐entries Deletesallentriesassociatedwiththespecifiedpolicyprofile.

ether DeletesassociatedEthernetIIclassificationrule.

ipproto DeletesassociatedIPprotocolclassificationrule.

ipdestsocket DeletesassociatedIPde stinationclassificationrule.

ipsourcesocket Deletesassociated

IPsourceclassificationrule.

iptos DeletesassociatedIPTypeofServiceclassificationrule.

macdest DeletesassociatedMACdestinationaddressclassificationrule.

macsource DeletesassociatedMACsourceaddressclassificationrule.

tcpdestport DeletesassociatedTCPdestinationportclassificationrule.

tcpsourceport DeletesassociatedTCPsourceportclassificationrule.

udpdestport DeletesassociatedUDPdestinationportclassificationrule.

udpsourceport Deletes

associatedUDPsourceportclassificationrule.