beautypg.com

Brocade Virtual ADX MIB Reference (Supporting ADX v03.1.00) User Manual

Page 94

background image

82

Brocade Virtual ADX MIB Reference

53-1003312-01

ACLs

snAgAclNumber
brcdIp.1.2.2.15.2.1.2
Syntax: AclNumber

Read-write

The access control list number for an entry:

1 to 99 – Standard access list

100 to 199 – Extended access list

snAgAclName
brcdIp.1.2.2.15.2.1.3
Syntax: DisplayString

Read-write

Shows the ACL name.

snAgAclAction
brcdIp.1.2.2.15.2.1.4
Syntax: Integer

Read-write

Indicates if IP packets that matched this access control list are permitted
or denied:

deny(0)

permit(1)

The default action when no ACLs are configured on a device is to permit
all traffic. However, once you configure an ACL and apply it to a port, the
default action for that port is to deny all traffic that is not explicitly
permitted on the port. Therefore:

If you want to tightly control access, configure ACLs consisting of
permit entries for the access you want to permit. The ACLs implicitly
deny all other access.

If you want to secure access in environments with many users, you
might want to configure ACLs that consist of explicit deny entries,
then add an entry to permit all access to the end of each ACL. The
software permits packets that are not denied by the deny entries.

snAgAclProtocol
brcdIp.1.2.2.15.2.1.5
Syntax: IPProtocol

Read-write

Indicates the protocol denied or permitted by the extended ACL.
The IP protocol can be one of the following well-known names or any IP
protocol number from 0 to 255:

Internet Control Message Protocol (ICMP)

Internet Group Management Protocol (IGMP)

Internet Gateway Routing Protocol (IGRP)

Internet Protocol (IP)

Open Shortest Path First (OSPF)

Transmission Control Protocol (TCP)

User Datagram Protocol (UDP)

Entering “0” indicates any protocol.

snAgAclSourceIp
brcdIp.1.2.2.15.2.1.6
Syntax: IpAddress

Read-write

Applies only to extended ACLs.
Identifies the source IP address of the packet that will either be
permitted or denied.

snAgAclSourceMask
brcdIp.1.2.2.15.2.1.7
Syntax: IpAddress

Read-write

Applies only to extended ACLs.
Identifies the source IP subnet mask of the packet that will either be
permitted or denied.

Name, OID, and Syntax

Access

Description

See also other documents in the category Brocade Computer Accessories: