14 access-list ace – PLANET WGSW-48040HP User Manual

Command Guide of WGSW-48040HP

To enable the access management profile to allow SNMP / Telnet / HTTP services.

Example:

To create a Profile 1 enabling all services for VLAN 1 (IPv6 address 2001::7788) .

Switch# configure terminal

Switch (config)# access management 1 1 2001::7788 all

4.2.14 access-list ace

Command:

access-list ace <AceId : 1-512> action {deny, permit} | dmac-type {any, broadcast,

multicast, unicast} | frametype {any, arp, etype, ipv4, ipv4-icmp, ipv4-tcp, ipv4-udp,

ipv6, ipv6-icmp, ipv6-tcp, ipv6-udp} | ingress {any, interface 10GigabitEthernet |

GigabitEthernet <PORT_ID>} | logging {disable, next, policy, rate-limiter, shutdown,

tag-priority, vid} | next {<AceId : 1-512>, last}| policy <PolicyId : 0-255> | rate-limiter

{<RateLimiterId : 1-16>, disable} | redirect {disable, interface 10GigabitEthernet |

GigabitEthernet <PORT_ID>} | tag-priority {0-1, 0-3, 2-3, 4-5, 4-7, 6-7, <TagPriority :

0-7>, any} | vid {<Vid : 1-4095>, any}

<AceId : 1-512> ACE ID

action Access list action

dmac-type The type of destination MAC address

frametype Frame type

ingress Ingress

logging Logging frame information. Note: The logging feature only

works when the packet length is less than 1518 (without

VLAN tags) and the System Log memory size and logging rate

are limited.

next Insert the current ACE before the next ACE ID

policy Policy

rate-limiter Rate limiter

redirect Redirect frame to specific port

shutdown Shutdown incoming port. The shutdown feature only works

when the packet length is less than 1518 (without VLAN

tags).

tag-priority Tag priority

vid VID field

Default:

-51-