Filter
Top Products
Configure Bridge’s Routing Function 303
When creating an ACL based on Ethernet type code (Ethernet-II, SNAP or
LSAP), you can specify aclt-number in the range of 200 to 299. type-code is a
16-bit hexadecimal number written with a leading “0x”, corresponding to the
type-code field in the Ethernet-II or SNAP frames. type-wildcard is a 16-bit
hexadecimal number written with a leading “0x” and used to specify the
shielded bits.
When creating an ACL, note that:
■ The rules will be compared in the order in which they are configured.
■ If no rule is matched, Ethernet frames should still be permitted to pass.
■ The number of created rules cannot exceed 200.
7 Apply ACLs on Ports
Perform the following configuration in interface view.
a Apply ACLs based on MAC addresses on ports
Table 335 Apply ACLs based on MAC addresses on ports
By default, no ACL is applied on the port.
b Apply an ACL encapsulated in the form of IEEE 802.2 on the port
Table 336 Apply an ACL encapsulated in the form of IEEE 802.2 on the port
By default, no ACL is applied on the port.
c Apply an ACL encapsulated in the form of Ethernet-II/Ethernet-SNAP on the
port
Table 337 Apply an ACL encapsulated in the form of IEEE 802.2 on the port
Operation Command
Apply ACLs based on MAC addresses in the
input direction of ports
bridge-set bridge-set source-mac
acl acl-number
Remove the application of ACLs based on
MAC addresses in the input direction of ports
undo bridge-set bridge-set
source-mac acl acl
-number
Apply ACLs based on MAC addresses in the
output direction of ports
bridge-set bridge-set dest-mac acl
acl-number
Remove the application of ACLs based on
MAC addresses in the input direction of ports
undo bridge-set bridge-set
dest-mac acl acl-number
Operation Command
Apply an ACL encapsulated in the form of
IEEE 802.2 to the input side of the port
bridge-set bridge-set inbound-lsap
acl acl
-number
Remove the application of the ACL
encapsulated in the form of IEEE 802.2 to the
input side of the port
undo bridge-set bridge-set
inbound-lsap acl acl
-number
Apply the ACL encapsulated in the form of
IEEE 802.2 to the output side of the port
bridge-set bridge-set
outbound-lsap acl
-number
Remove the application of the ACL
encapsulated in the form of IEEE 802.2 to the
output side of the port
undo bridge-set bridge-set
outbound-lsap acl acl
-number
Operation Command
Apply an ACL encapsulated in the form of
Ethernet-II or Ethernet-SNAP to the input side
of the port
bridge-set bridge-set
inbound-type acl acl
-number