Fujitsu P3NK-4452-01ENZD Computer Hardware User Manual


  Open as PDF
of 614
 
XG Series User's Guide Chapter 5 Command Reference
VLAN Information Settings
165
Caution
Note 1.
If none of "acl mac", "acl vlan" and "acl ip" definitions exist on the access control list
which has been specified by <acl> or if the access control list specified by <acl> does not
exist, the packets are not filtered.
Note 2.
The packet filtering default value is "pass".
No packets are filtered if only "pass" is set in <action>.
[XG2600]
Note 3.
"acl mac llc" definitions can not filter llc frames with the VLAN tag.
Note 4.
This command is unavailable if the allowable upper limit for the device is exceeded.
The allowable upper limits are as follows.
Upper limit based on "commands"
64 commands for the entire device.
Up to 64 commands can be set for the entire device, including the"ether macfilter"",
"vlan macfilter", "lan ip filter", "ether qos aclmap", "vlan qos aclmap", "lan ip dscp"
commands.
The priority for each command is as follows.
1) "ether macfilter" command
A smaller Ethernet port number has a higher priority among Ethernet ports.
2) "vlan macfilter" command
A smaller VLAN ID has a higher priority among VLANs.
3) "lan ip filter" command
A smaller lan definition number has a higher priority among lans.
4) "ether qos aclmap" command
A smaller Ethernet port number has a higher priority among Ethernet ports.
5) "vlan qos aclmap" command
A smaller VLAN ID has a higher priority among VLANs.
6) "lan ip dscp" command
A smaller lan definition number has a higher priority among lans.
Upper limit based on "masks"
64 masks for the entire device.
Up to 64 masks can be set for the entire device, including the "ether macfilter", "vlan
macfilter", "lan ip filter", "ether qos aclmap", "vlan qos aclmap", "lan ip dscp", "vlan
protocol" commands.
The priority for each command is as follows.
1) "vlan protocol" commands
2) "ether macfilter" command
A smaller Ethernet port number has a higher priority among Ethernet ports.
3) "vlan macfilter" command
A smaller VLAN ID has a higher priority among VLANs.
4) "lan ip filter" command
A smaller lan definition number has a higher priority among lans.
 previous next