Managing Device Security
439
ProSafe M5300 Switch
• Assign Queue Id - Specifies the hardware egress queue identifier used to handle all
packets matching this ACL rule. Valid range of Queue Ids is (0 to 6).
• CoS - Specifies the 802.1p user priority to compare against an Ethernet frame. Valid
range of values is 0 to 7.
• Ethertype User Value - Specifies the user defined customized Ethertype value to be
used when the user has selected “User Value” as Ethertype Key, to compare against
an Ethernet frame. Valid range of values is 0x0600 to 0xFFFF.
• Source MAC - Specifies the Source MAC address to compare against an Ethernet
frame. Valid format is (xx:xx:xx:xx:xx:xx).
• Source MAC Mask - Specifies the Source MAC address mask specifying which bits in
the Source MAC to compare against an Ethernet frame. Valid format is
(xx:xx:xx:xx:xx:xx).
• Destination MAC - Specifies the destination MAC address to compare against an
Ethernet frame. Valid format is (xx:xx:xx:xx:xx:xx). The BPDU keyword may be
specified using a Destination MAC address of 01:80:C2:xx:xx:xx.
• Destination MAC Mask - Specifies the destination MAC address mask specifying
which bits in the destination MAC to compare against an Ethernet frame. Valid format
is (xx:xx:xx:xx:xx:xx). The BPDU keyword may be specified using a Destination MAC
mask of 00:00:00:ff:ff:ff. VLAN - Specifies the VLAN ID to compare against an
Ethernet frame. Valid range of values is 0 to 4095. Either VLAN Range or VLAN can
be configured.
• Logging - When set to 'Enable', logging is enabled for this ACL rule (subject to
resource availability in the device). If the Access List Trap Flag is also enabled, this
will cause periodic traps to be generated indicating the number of times this rule was
'hit' during the current report interval. A fixed 5 minute report interval is used for the
entire system. A trap is not issued if the ACL rule hit count is zero for the current
interval. This field is only supported for a 'Deny' Action.
• Rate Limit Conform Data Rate - Specify the allowed transmission rate for frames on
the interface
• Rate Limit Burst Size - Specify the number of bytes allowed in a temporary traffic
burst (Burst Rate).
• Time Range - Select the name of the time range that will impose a time limitation on
the ACL rule. If a time range with the specified name does not exist, and the ACL
containing this ACL rule is associated with an interface, the ACL rule is applied
immediately. If a time range with specified name exists, and the ACL containing this
ACL rule is associated with an interface, the ACL rule is applied when the time-range
with specified name becomes active. The ACL rule is removed when the time-range
with specified name becomes inactive. The Rule Status field indicates whether the
ACL falls within the specified time range (active) or is not within the range (inactive).
3. Click CANCEL to cancel the configuration on the screen and reset the data on the screen to
the latest value of the switch.
4. To delete a rule, select the check box associated with the rule and click DELETE.
5. To change a rule, select the check box associated with the rule, change the desired fields
and click APPLY. Configuration changes take effect immediately.