Support User Manuals

D-Link DGS-3600 Switch User Manual

Open as PDF

of 757

xStack

®

DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual

78

config access_profile

dst_port - Specifies the range of tcp destination port mask

protocod_id - Specifies that the rule applies to the value of ip protocol id traffic

user_define - Specifies that the rule applies to the ip protocol id and the

mask options behind the IP header length is 20 bytes.

packet_content - Specifies the packet content for the user defined mask.

ipv6 - Specifies the rule applies to ipv6 fields . The field is optional by project.

class - Specifies the value of ipv6 class.

flowlabel - Specifies the value of ipv6 flowlabel.

source_ipv6 - Specifies the value of ipv6 source address.

destination_ipv6 - Specifies the value of ipv6 destination address.

src_port - Specifies the value of ipv6 L4(TCP/UDP) source port

dst_port - Specifies the value of ipv6 L4(TCP/UDP) destination port

port - Specifies a list of port to apply the rule.

permit - Specifies the packets that match the access profile are permit by the switch

priority - Specifies that priority of the packet will be changed if the packet match the access

rule.

replace_priority - Specifies 802.1p priority of the outgoing packet will be marked too.

replace_dscp - Specifies that DSCP of the outgoing packet will be marked by the new value.

counter - Specifies whether counter feature will be enabled / disabled. If the rule is binded

with flow_meter, then “counter” here will be overrided.

deny - Specifies the packets that match the access profile are filtered by the switch

mirror - Specifies the packets that match the access profile are sent the copied one to the

mirror port.

time_range - Specifies name of this time range entry.

offset_chunk_1, offset_chunk_2, offset_chunk_3, offset_chunk_4 - Specifies the content of

the trunk to be monitored.

Restrictions Only Administrator and Operator-level users can issue this command.

Example usage:

To configure an access list rule entry:

DGS-3627:admin# config access_profile profile_id 1 add access_id 1 ip vlan default

source_ip 20.2.2.3 destination_ip 10.1.1.252 dscp 3 icmp type 11 code 32 port 1 mirror

group_id 1 time_range testdaily

Command: config access_profile profile_id 1 add access_id 1 ip vlan default source_ip

20.2.2.3 destination_ip 10.1.1.252 dscp 3 icmp type 11 code 32 port 1 mirror group_id 1

time_range testdaily

Mirror function must be enabled and mirror port must be configured.

Success.

DGS-3627:admin#

To configure an rule entry for packet content mask profile:

previous next