Policy Classification Configuration Command Set
Assigning Classification Rules to Policy Profiles
Matrix NSA Series Configuration Guide 8-33
• If port-string is not specified, rule will be scoped to all ports.
Command Type
Switch command.
Command Mode
Read-Write.
Examples
This example shows how to use Table 8-3 to create (and enable) a classification rule to associate
with policy number 1. This rule will filter Ethernet II Type 1526 frames to VLAN 7:
This example shows how to use Table 8-3 to create (and enable) a classification rule to associate
with policy profile number 5. This rule specifies that UDP frames from source port 45 will be
filtered to VLAN 7:
This example shows how to configure classification rule 2 as an administrative profile and assign
it to ingress port fe.1.1:
Table 8-3 provides the set policy rule data values that can be entered for a particular classification
type, and the mask bits that can be entered for each classifier associated with that parameter.
hen there
Matrix(rw)->set policy rule 1 ether 1526 vlan 7
Matrix(rw)->set policy rule 5 udpportsource 45 vlan 7
Matrix(rw)->set policy rule admin-profile port fe.1.1 port-string fe.1.1
admin-pid 2
Table 8-3 Valid Values for Policy Classification Rules
Classification Rule Parameter data value mask bits
ether Type field in Ethernet II
packet: 1536 - 65535
1- 16
Destination or Source IP
Address:
ipdest
ipsource
IP Address in dotted decimal
format: 000.000.000.000
1 - 48