DGS-3200 Series Layer 2 Gigabit Managed Switch CLI Manual
441
Example topology
Configuration
The configuration logic is as follows:
1. Only if the ARP matches Source MAC address in Ethernet, Sender MAC address and Sender IP address in ARP
protocol can pass through the switch. (In this example, it is gateway’s ARP.)
2. The switch will deny all other ARP packets which claim they are from the gateway’s IP.
The design of Packet Content ACL enables users to inspect any offset_chunk. An offset_chunk is a 4-byte block in a
HEX format which is utilized to match the individual field in an Ethernet frame. Each profile is allowed to contain up to a
maximum of four offset_chunks. Furthermore, only one single profile of Packet Content ACL can be supported per
switch. In other words, up to 16 bytes of total offset_chunks can be applied to each profile and a switch. Therefore, a
careful consideration is needed for planning and configuration of the valuable offset_chunks.
In Table-6, you will notice that the Offset_Chunk0 starts from the 127
th
byte and ends at the 128
th
byte. It also can be
found that the offset_chunk is scratched from
1
but not zero.