Examples: extended acl rules – Avaya P580 User Manual
Page 674
-28
Chapter
Avaya P550R, P580, P880, and P882 Multiservice Switch User Guide, v5.3.1
Examples:
Extended ACL
Rules
Table 6-152. Examples: Extended ACL Rules
To . . .
Enter . . .
Use the DSCP in the packet to
classify all traffic that has a:
• Source IP address of
199.93.239.168
• Destination address in the 1.1.1
subnet
access-list MyAcessList2 1
permit use-diffserv ip host
199.93.239.168 1.1.1.0 0.0.0.255
Use the DSCP in the packet to
classify all traffic that has a:
• Source IP address in the 3.0
subnet
• Destination address in the 5.0
subnet
• Mask the three least significant
bits of the DSCP
access-list MyAccessList2 2
permit use-diffserv mask ip
3.0.0.0 0.255.255.255 5.0.0.0
0.255.255.255
Assign a priority of 2 to all TCP
traffic that has a:
• Source IP address in the 1.1
subnet
• Source port that is greater than
24
• Destination IP address in the 6.6
subnet
• Destination port of 23
access-list MyAccessList2 3
permit use-priority 2 tcp
1.1.0.0 0.0.255.255 gt 24 6.6.0.0
0.0.255.255 eq 23
• Replace the existing DSCP of
packets with a DSCP of 12 for all
traffic that has a source IP
address of 199.93.238.83.
• Mask the three least significant
bits of the DSCP.
access-list MyAccessList2 4
permit remark l2 mask ip host
199.93.238.83 any
Replace the existing DSCP of the
packet with a DSCP of 24 for all
ICMP traffic that has a:
• Source IP address of 2.2.2.2
• Destination IP address of 4.4.4.4
access-list MyAccessList2 5
permit remark 24 icmp host
2.2.2.2 host 4.4.4.4
1 of 2