Brocade Communications Systems Brocade ICX 6650 6650 User Manual

Page 7

Advertising
background image

Brocade ICX 6650 Security Configuration Guide

vii

53-1002601-01

ACL statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .118

ACLs to control multicast features . . . . . . . . . . . . . . . . . . . . . . . . . .118

Enabling and viewing hardware usage statistics for an ACL . . . . .118

Displaying ACL information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .119

Troubleshooting ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .119

Policy Based Routing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .119

Configuration considerations for policy-based routing . . . . . .120
Configuring a PBR policy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .120
Configuring the ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .121
Configuring the route map. . . . . . . . . . . . . . . . . . . . . . . . . . . . .122
Enabling PBR . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .123
Configuration examples for PBR . . . . . . . . . . . . . . . . . . . . . . . .124
Setting the next hop. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .124
Setting the output interface to the null interface . . . . . . . . . .125
Trunk formation with PBR policy . . . . . . . . . . . . . . . . . . . . . . . .126

Chapter 4

IPv6 ACLs

IPv6 ACL overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .127

IPv6 ACL traffic filtering criteria . . . . . . . . . . . . . . . . . . . . . . . .128
IPv6 protocol names and numbers. . . . . . . . . . . . . . . . . . . . . .128

IPv6 ACL configuration notes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .128

Configuring an IPv6 ACL . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .129

Example IPv6 configurations. . . . . . . . . . . . . . . . . . . . . . . . . . .129
Default and implicit IPv6 ACL action. . . . . . . . . . . . . . . . . . . . .131

Creating an IPv6 ACL. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .132

Syntax for creating an IPv6 ACL . . . . . . . . . . . . . . . . . . . . . . . .132

Enabling IPv6 on an interface to which an ACL will be applied . . .137

Applying an IPv6 ACL to an interface . . . . . . . . . . . . . . . . . . . . . . . .137

Syntax for applying an IPv6 ACL . . . . . . . . . . . . . . . . . . . . . . . .138
Applying an IPv6 ACL to a trunk group . . . . . . . . . . . . . . . . . . .138
Applying an IPv6 ACL to a virtual interface in a
protocol-based or subnet-based VLAN . . . . . . . . . . . . . . . . . . .138

Adding a comment to an IPv6 ACL entry . . . . . . . . . . . . . . . . . . . . .138

Deleting a comment from an IPv6 ACL entry . . . . . . . . . . . . . . . . .139

Support for ACL logging . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .139

Displaying IPv6 ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .139

Chapter 5

ACL-based Rate Limiting

ACL-based rate limiting overview . . . . . . . . . . . . . . . . . . . . . . . . . . . 141

Types of ACL-based rate limiting . . . . . . . . . . . . . . . . . . . . . . . . 141

Traffic policies overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .142

Traffic policy structure . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .142
Configuration notes for traffic policies . . . . . . . . . . . . . . . . . . .143

Configuring fixed rate limiting . . . . . . . . . . . . . . . . . . . . . . . . . . . . .143

Advertising
Popular Brands
Popular manuals