Setting the acl name and type, Figure 205 s – Brocade 6910 Ethernet Access Switch Configuration Guide (Supporting R2.2.0.0) User Manual

886

Brocade 6910 Ethernet Access Switch Configuration Guide

53-1002651-02

42

Access Control Lists

FIGURE 205

Showing TCAM Utilization

Setting the ACL Name and Type

Use the Security > ACL (Configure ACL - Add) page to create an ACL.

CLI References

•

“access-list ip”

on page 234

•

“show ip access-list”

on page 239

•

“access-list ipv6”

on page 240

•

“show ipv6 access-list”

on page 243

Parameters
These parameters are displayed:

•

ACL Name – Name of the ACL. (Maximum length: 32 characters)

•

Type – The following filter modes are supported:

•

IP Standard: IPv4 ACL mode filters packets based on the source IPv4 address.

•

IP Extended: IPv4 ACL mode filters packets based on the source or destination IPv4
address, as well as the protocol type and protocol port number. If the “TCP” protocol is
specified, then you can also filter packets based on the TCP control code.

•

IPv6 Standard: IPv6 ACL mode filters packets based on the source IPv6 address.

•

IPv6 Extended: IPv6 ACL mode filters packets based on the source or destination IP
address, as well as DSCP, and the next header type.

•

MAC – MAC ACL mode filters packets based on the source or destination MAC address and
the Ethernet frame type (RFC 1060).

•

ARP – ARP ACL specifies static IP-to-MAC address bindings used for ARP inspection (see

“ARP Inspection”

on page 901).

Interface
To configure the name and type of an ACL:

1. Click Security, ACL.

2. Select Configure ACL from the Step list.

3. Select Add from the Action list.

4. Fill in the ACL Name field, and select the ACL type.

5. Click Apply.