244
DWS-1008 User’s Manual
D-Link Systems, Inc.
Configuring and Managing Security ACLs
Displaying ACL Maps to Ports, VLANs, and Virtual Ports
Two commands display the port, VLAN, virtual port, and Distributed AP mapping of a specific
security ACL. For example, to show the ports, VLANs, virtual ports, and Distributed APs
mapped to
acl-999
, type one of the following commands:
DWS-1008#
show security acl map acl-999
ACL acl-999 is mapped to:
Port 9 In
Port 9 Out
DWS-1008#
show security acl
ACL table
ACL
Type Class
Mapping
-------------------------------------------------------------
acl-orange IP Static
Port 9 In
acl-999 IP Static
Port 9 Out
acl-blue IP Static
Port 1 In
acl-violet IP Static
VLAN 1 Out
Clearing a Security ACL Map
To clear the mapping between a security ACL and one or more ports, VLANs, virtual ports, or
Distributed APS, first display the mapping with
show security acl map
and then use
clear
security acl map
to remove it. This command removes the mapping, but not the ACL.
For example, to clear the security ACL
acljoe
from a port, type the following commands:
DWS-1008#
show security acl map acljoe
ACL acljoe is mapped to:
Port 4 In
DWS-1008#
clear security acl map acljoe port 4 in
success: change accepted.
After you clear the mapping between port 4 and ACL
acljoe
, the following is displayed when
you enter
show security acl map
:
DWS-1008#
show security acl map acljoe
ACL acljoe is mapped to:
Clearing a security ACL mapping does not stop the current filtering function if the ACL has
other mappings. If the security ACL is mapped to another port, a VLAN, a virtual port, or a
Distributed AP, you must enter a
clear security acl map
command to clear each map.
To stop the packet filtering of a user-based security ACL, you must modify the user’s