61
CSA-7400 QSG
Example
Create a VLAN with VLAN ID of 2. Set port xe2 and xe3 as untagged port and add them into
VLAN.
8.4.3 ACL
Configuration
Access Control Lists (ACLs) provide an optional control capability that allows or disallows
transport from certain source or to certain destination addresses. An access control list (ACL)
is a set of rules (or permit or deny statements) for identifying traffic based on criteria such as
source IP address, destination IP address, and port number.
ACLs are primarily used for packet filtering. A packet filter drops packets that match a deny
rule and permits packets that match a permit rule. The following commands are available for
ACL.
ACL add
Description
Add an ACL.
Prerequisite
None
Syntax
acl add <0-1> ACTION POLICER QUALIFIER …
<0-1>
ACL rule priority, 0 means high priority, 1 means low
priority. If the
ACTION
<action_type>[=param0][/param1]. Please use “acl
list actions” to show the actions supported.
POLICER
policer=policer_id for limit the transmission rate of
flow; policer=0 for NOT limitation; Default is 0.
Options
QUALIFIER
<qualifier_type>[=data][/mask]. There can be 1~8
qualifiers. Please use “acl list qualifiers” to show the
qualifiers supported.
ADLINK (fabric)# vlan add 2 xe2 untag
ADLINK (fabric)# vlan add 2 xe3 untag
ADLINK (fabric)# vlan name set 2 hello
ADLINK (fabric)# show vlan 2
vlan 2, name hello, ports xe2-xe3, untagged xe2-xe3.
ADLINK (fabric)# vlan del 2 xe2
ADLINK (fabric)# show vlan 2
vlan 2, name hello, ports xe3, untagged xe3.
ADLINK (fabric)# vlan remove 2
ADLINK (fabric)# show vlan 2
vlan 2 ports NULL, untagged NULL.