Owner's Manual
340 | Chapter 13. ACLs
NETGEAR 8800 User Manual
source-port 81;
destination-port 200 ;
} then {
count num_pkts_redirected;
redirect-port 3:2;
}
}
The policy shown below redirects any in-profile traffic as defined by the meter configuration to
physical port 14. The out-of-profile traffic would be subject to the action specified in the meter
“out-action” configuration.
entry one {
if {
} then {
meter redirected_traffic;
count num_pkts_redirected;
redirect-port 14;
}
}
If an incorrect port format is used or if the port number specified is out of range, the following
error message will be displayed:
*XCM8810.68 # check policy l2pbr
Error: Policy l2pbr has syntax errors
Line 7 : 12:3 is not a valid port.
XCM8810.70 # check policy l2pbr
Error: Policy l2pbr has syntax errors
Line 7 : 77 is not a valid port.
When this feature is used, the traffic egressing the redirect-port can either be tagged or
untagged depending on the redirect-port VLAN configuration.
Table 36 provides the details.
Be aware of the following important implementation notes:
• Using the “redirect-port” action with a disabled port causes traffic to be dropped.
• Using the “redirect-port” action overrides Layer 2 echo kill; the result is that a packet can
be made to egress the ingress port at Layer
2.
Table 36. VLAN Format of Traffic Egressing Redirect-Port
ACL Hardware Type Redirect-Port Not in
Egress VLAN
Redirect-Port Tagged in
Egress VLAN
Redirect-Port Untagged
in Egress VLAN
XCM8800 Dropped VLAN Tagged Untagged