Sample output: extended acl rules – Avaya Cajun P550R User Manual

Chapter 23

23-6

Command Reference Guide for the Avaya P550R, P580, P880, and P882 Multiservice Switches, v5.3.1

Sample Output:
Extended ACL
Rules

The following table provides examples of extended ACL rules.

Use the layer 2 priority of the
packet to classify all traffic that has
a source address in the 11.11.11
subnet

access-list MyAccessList1 7
permit use-l2 11.11.11.0
0.0.0.255

Use the DSCP in the packet to
classify all traffic that has a source
IP address of 199.93.239.168

access-list MyAccessList1 8
permit use-diffserv host
199.93.239.168

• Use the DSCP in the packet to

classify all traffic that has a
source IP address of 3.3.3.3

• Mask the three least significant

bits of the DSCP

access-list MyAccessList1 9
permit use-diffserv mask host
3.3.3.3

Assign a priority of 2 to all traffic
that has a source IP address of
1.1.1.1

access-list MyAccessList1 10
permit use-priority 2 1.1.1.1

Block all traffic that has a source IP
address of 10.1.0.55

access-list MyAccessList1 11
deny 10.1.0.55

Table 23-2. Examples: Standard ACL Rules

To . . .

Enter . . .

2 of 2

Table 2. Examples: Extended ACL Rules

To . . .

Enter . . .

Use the DSCP in the packet to
classify all traffic that has a:

• Source IP address of

199.93.239.168

• Destination address in the 1.1.1

subnet

access-list MyAcessList2 1
permit use-diffserv ip host
199.93.239.168 1.1.1.0 0.0.0.255

Use the DSCP in the packet to
classify all traffic that has a:

• Source IP address in the 3.0

subnet

• Destination address in the 5.0

subnet

• Mask the three least significant

bits of the DSCP

access-list MyAccessList2 2
permit use-diffserv mask ip
3.0.0.0 0.255.255.255 5.0.0.0
0.255.255.255

1 of 3