Layer 2 acl next clause table – Brocade Unified IP MIB Reference (Supporting FastIron Release 07.5.00) User Manual
Page 427
Unified IP MIB Reference
399
53-1002549-02
Layer 2 ACL next clause table
Layer 2 ACL next clause table
The Layer 2 ACL next clause table (fdryL2AclNextClauseTable) contains the list of the next lowest
available clause index that can be used for creating a Layer 2 ACL in the fdryL2AclTable
configuration table. (Refer to
“Layer 2 ACL configuration table”
Every Layer 2 ACL in fdryL2AclTable has a clause index that consists of a list of ACL clause entries.
A Layer 2 ACL cannot be created without any clause entries. There must be at least one clause
entry in a Layer 2 ACL. Thus, when all the clause entries are deleted from a Layer 2 ACL, the ACL
itself will also be deleted.
By default, there will be 64 clause entries for each Layer 2 ACL. This number can be changed by
issuing the system-max l2-acl-table-entries command on the device CLI. You can specify up to 256
clause entires per Layer 2 ACL.
The initial value of fdryL2AclNextClauseIndex in each table row is 1. When a clause entry is created
for a Layer 2 ACL, this value is incremented by one. When the number of clause entries created for
an ACL reaches the maximum limit, a Get operation on fdryL2AclClauseIndex will return a
noSuchInstance error. The error indicates that no more clauses can be added to fdryL2AclTable for
this ACL.
When a clause entry for an ACL is removed (in the beginning or middle or end), the clause index is
available for adding a new clause entry for this ACL. The fdryL2AclClauseIndex always returns the
lowest available clause index where a new clause must be added.
The CLI displays the ACL clause in chronological order. However, SNMP is bounded by clause index,
and thus it may not display the rows in chronological order. The clause index does not map to the
sequence in which the ACL clause is checked at run time. The clause index is an internal value
used to identify unique ACL clauses within a given ACL ID.
For example, if only three clause entries can be created for a Layer 2 ACL, the following steps
describe how the ACL clause is assigned.
1. Before adding any clause to a Layer 2 ACL, a Get operation on fdryL2AclNextClauseIndex
returns “1”.
2. When you add the first clause entry, a Get operation on fdryL2AclNextClauseIndex returns “2”.
3. When you add the second clause entry, a Get operation on fdryL2AclNextClauseIndex returns
“3”.
4. When you add the third clause entry, a Get operation on fdryL2AclNextClauseIndex returns “4”.
5. If you remove the second clause entry (#2), a Get operation on fdryL2AclNextClauseIndex,
returns “2” because it is the lowest available index.
The fdryL2AclNextClauseTable is a read-only table.