Default configuration, Command mode, User guidelines – Dell POWEREDGE M1000E User Manual

1384

Management ACL Commands

• gigabitethernet

unit/slot/port

— A valid 1-gigabit Ethernet-routed port

number.

•

vlan

vlan-id

— A valid VLAN number.

•

port-channel

port-channel-number

— A valid port channel number.

• tengigabitethernet

unit/slot/port

— A valid 10-gigabit Ethernet-routed

port number.

•

ip-address

— Source IP address.

• mask

mask

— Specifies the network mask of the source IP address.

• mask

prefix-length

— Specifies the number of bits that comprise the

source IP address prefix. The prefix length must be preceded by a forward

slash (/). (Range: 0–32)

•

service

service

— Indicates service type. Can be one of the following:

telnet, ssh, http, https, tftp, snmp, sntp, or any. The any keyword indicates

that the service match for the ACL is effectively "don’t care".

•

priority

priority-value

— Priority for the rule. (Range: 1 – 64)

Default Configuration

This command has no default configuration.

Command Mode

Management Access-list Configuration mode

User Guidelines

Rules with gigabitethernet, tengigabitethernet, vlan, and port-channel

parameters are valid only if an IP address is defined on the appropriate

interface. Ensure that each rule has a unique priority.

Examples

The following example shows how to configure two management interfaces,

gigabit Ethernet 1/0/1 and gigabit Ethernet 2/0/9.

console(config)#management access-list mlist

console(config-macal)# permit gigabitethernet 1/0/1 priority 1

console(config-macal)# permit gigabitethernet 2/0/9 priority 1

console(config-macal)# exit

2CSPC4.XModular-SWUM200.book Page 1384 Thursday, March 10, 2011 11:18 AM