Brocade Multi-Service IronWare Security Configuration Guide (Supporting R05.6.00) User Manual

110

Multi-Service IronWare Security Configuration Guide

53-1003035-02

Configuring numbered and named ACLs

3

Parameters to filter TCP or UDP packets
Use the parameters below if you want to filter traffic with the TCP or UDP packets. These
parameters apply only if you entered tcp or udp for the ip-protocol parameter. For example, if you
are configuring an entry for HTTP, specify tcp eq http.

priority |
priority-force |
priority-mapping

The Priority option assigns internal priority to traffic that matches the ACL. In addition to
changing the internal forwarding priority, if the outgoing interface is an 802.1q interface, this
option maps the specified priority to its equivalent 802.1p (QoS) priority and marks the packet
with the new 802.1p priority. This option is applicable for inbound ACLs only.
The Priority-force option assigns internal priority to packets of traffic that match the ACL, even
though the incoming packet may be assigned a higher priority. This option is applicable for
inbound ACLs only.
The priority-mapping option matches on the packet’s 802.1p value. This option does not
change the packet’s forwarding priority through the device or mark the packet. This keyword is
applicable for both inbound and outbound ACLs.

priority-value

The priority-value variable specifies one of the following QoS queues for use with the priority,
priority-force or priority-mapping options:
0 – qosp0
1 – qosp1
2 – qosp2
3 – qosp3
4 – qosp4
5 – qosp5
6 – qosp6
7 – qosp7

mirror

Specifies mirror packets matching ACL permit clause. For more information on configuring the
acl-mirror-port command, refer to Multi-Service IronWare Switching Configuration Guide.