beautypg.com

Acl filter sequence number types – Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual

Page 839

background image

Access Control Lists Introduction

Software Reference for x310 Series Switches

C613-50046-01 REV A

AlliedWare Plus

TM

Operating System - Version 5.4.4C

33.15

Numbered extended ACLs are available in the range <100-199> and <2000-2699>,
which permit or deny source addresses and destination addresses (plus ICMP, TCP, UDP
messages) to control packets coming from and going to network devices or hosts.

Named hardware IPv4 and IPv6 ACLs are available which permit or deny IP and MAC
source and destination addresses plus VLAN IDs to control packets coming from and
going to network device and hosts. Named hardware IPv4 and IPv6 ACLs use the ACL
sequence number support feature for ACL revision.

The ACL sequence number support feature is available for use with named hardware IPv4
and IPv6 ACLs, but this feature is not available for use with the numbered hardware IPv4
ACLs.

Numbered hardware ACLs are available in the range <3000-3699>, which permit or
deny IP source addresses, IP destination addresses, and VLAN IDs to control packets
coming from and going to network devices and hosts, in hardware.

Numbered hardware ACLs are available in the range <4000-4699>, which permit or
deny MAC source addresses, MAC destination addresses, and VLAN IDs to control packets
coming from and going to network devices and hosts, in hardware.

ACL Filter Sequence Number Types

There are ACL filter sequence numbers available for the following types of ACLs:

Note that ACL sequence number support for these ACL commands is optional not
required. An ACL sequence number will be added automatically, starting at 10 and
incrementing by 10.

ACL Type

ACL Command Syntax

IPv4 Standard Numbered ACLs

access-list <1-99>
access-list <1300-1999>

IPv4 Extended Numbered ACLs

access-list <100-199>
access-list <2000-2699>

IPv4 Standard Named ACLs

access-list standard <name>

IPv4 Extended Named ACLs

access-list extended <name>

IPv4 Hardware Named ACLs

access-list hardware <name>

IPv6 Standard Named ACLs

ipv6 access-list standard <name>

IPv6 Extended Named ACLs

ipv6 access-list extended <name>

IPv6 Hardware Named ACLs

ipv6 access-list <name>