Allied Telesis Summit 24 User's Guide Page 109
- Page / 198
- Table of contents
- TROUBLESHOOTING
- BOOKMARKS
Rated. / 5. Based on customer reviews
Using Access Control Lists
Summit 300-48 Switch Software User Guide 109
Rate Limits
Each entry that makes up a rate limit contains a unique name and specifies a previously created access
mask. Like an access list, a rate limit includes a list of values to compare with the incoming packets and
an action to take for packets that match. Additionally, a rate limit specifies an action to take when
matching packets arrive at a rate above the limit you set. When you create a rate limit, you must specify
a value for each of the fields that make up the access mask used by the list.
NOTE
Unlike an access list, a rate limit can only be applied to a single port. Each port will have its own rate
limit defined separately.
For packets that match a particular list, and arrive at a rate below the limit, you can specify the
following action:
• Permit
Forward the packet. You can send the packet to a particular QoS profile, and modify the packet’s
802.1p value and/or DiffServe code point.
For packets that match a particular list, and arrive at a rate that exceeds the limit, you can specify the
following actions:
• Drop
Drop the packets. Excess packets are not forwarded.
• Permit with rewrite
Forward the packet, but modify the packet’s DiffServe code point.
The allowable rate limit values for the 100BT ports are 1, 2, 3, 4 ... 100 Mbps, and for the Gigabit ports
are 8, 16, 24, 32...1000 Mbps.
NOTE
The rate limit specified in the command line does not precisely match the actual rate limit imposed by
the hardware, due to hardware constraints. See the release notes for the exact values of the actual rate
limits, if required for your implementation.
How Access Control Lists Work
When a packet arrives on an ingress port, the fields of the packet corresponding to an access mask are
compared with the values specified by the associated access lists to determine a match.
It is possible that a packet will match more than one access control list. If the resulting actions of all the
matches do not conflict, they will all be carried out. If there is a conflict, the actions of the access list
using the higher precedence access mask are applied. When a match is found, the packet is processed. If
the access list is of type deny, the packet is dropped. If the list is of type permit, the packet is
forwarded. A permit access list can also apply a QoS profile to the packet and modify the packet’s
802.1p value and the DiffServe code point.
- Summit 300-48 Switch 1
- Software User Guide 1
- Contents 3
- Chapter 3 Managing the Switch 4
- Chapter 6 Wireless Networking 5
- Chapter 8 Power Over Ethernet 6
- Chapter 10 Access Policies 7
- Chapter 14 IP Unicast Routing 8
- Appendix A Safety Information 9
- Appendix D Troubleshooting 9
- Index of Commands 10
- Ta bl es 14
- Introduction 15
- Conventions 15
- Related Publications 16
- 1 ExtremeWare Overview 17
- Unified Access 18
- Virtual LANs (VLANs) 18
- Spanning Tree Protocol 18
- Software Licensing 19
- Security Licensing 20
- Software Factory Defaults 20
- ExtremeWare Overview 22
- 2 Accessing the Switch 23
- Syntax Helper 24
- Command Shortcuts 24
- Line-Editing Keys 25
- Command History 26
- Common Commands 26
- Configuring Management Access 28
- User Account 29
- Administrator Account 29
- Default Accounts 29
- Creating a Management Account 30
- Viewing Accounts 31
- Deleting an Account 31
- Checking Basic Connectivity 32
- Accessing the Switch 34
- 3 Managing the Switch 35
- Using the Console Interface 36
- Using Telnet 36
- Managing the Switch 38
- Using Secure Shell 2 (SSH2) 39
- Using SNMP 40
- Supported MIBs 41
- Configuring SNMP Settings 41
- Displaying SNMP Settings 42
- Authenticating Users 43
- RADIUS RFC 2138 Attributes 44
- Using ExtremeWare Vista 47
- Accessing ExtremeWare Vista 48
- Navigating ExtremeWare Vista 48
- Task Frame 49
- Content Frame 49
- Saving Changes 50
- Filtering Information 50
- Configuring and Using SNTP 51
- (continued) 53
- SNTP Configuration Commands 54
- SNTP Example 54
- Configuring Ports on a Switch 55
- Switch Port Commands 56
- Load Sharing on the Switch 57
- Switch Port-Mirroring 59
- Port-Mirroring Commands 60
- Extreme Discovery Protocol 61
- 5 Virtual LANs (VLANs) 63
- Types of VLANs 64
- System 1 65
- System 2 65
- Tagged VLANs 66
- Uses of Tagged VLANs 67
- Assigning a VLAN Tag 67
- Marketing 68
- VLAN Names 69
- Renaming a VLAN 70
- VLAN Configuration Commands 70
- Displaying VLAN Settings 71
- 6 Wireless Networking 73
- Wireless Devices 74
- Bridging 75
- Managing Wireless Ports 75
- Configuring RF Properties 76
- Configuring Country Codes 78
- Configuring Wireless Ports 79
- Managing Wireless Clients 80
- Show Commands 80
- Event Logging and Reporting 81
- Wireless Networking 82
- 7 Unified Access Security 83
- User Access Security 84
- Cipher Suites 85
- WPA-Only Support 86
- Legacy and WPA 802.1x Support 86
- Network Security Policies 87
- Policy Examples 88
- Policies and RADIUS Support 88
- RADIUS Attributes 88
- Security Profile Commands 89
- Unified Access Security 90
- 8 Power Over Ethernet 95
- Port Power Management 96
- Port Power Events 97
- Per-Port LEDs 98
- Power Over Ethernet 100
- Table 37: PoE Show Commands 101
- 9 Forwarding Database (FDB) 103
- How FDB Entries Get Added 104
- Configuring FDB Entries 105
- Displaying FDB Entries 106
- 10 Access Policies 107
- Access Masks 108
- Access Lists 108
- Rate Limits 109
- How Access Control Lists Work 109
- Specifying a Default Rule 110
- Maximum Entries 111
- Access Control List Commands 112
- Using Access Control Lists 113
- Access Policies 114
- 10.10.10.1 116
- 10.10.10.100 10.10.20.100 116
- 10.10.20.1 116
- 11 Quality of Service (QoS) 121
- Applications and Types of QoS 122
- Web Browsing Applications 123
- File Server Applications 123
- Traffic Groupings 124
- MAC-Based Traffic Groupings 125
- Configuring 802.1p Priority 126
- Observing 802.1p Information 126
- 802.1p Commands 127
- Configuring DiffServ 128
- DiffServ Examples 130
- Source port 130
- QoS Monitor 131
- Modifying a QoS Configuration 132
- Traffic Rate-Limiting 132
- Status Monitoring 133
- Port Statistics 135
- Port Errors 136
- Port Monitoring Display Keys 137
- Local Logging 139
- Remote Logging 139
- Logging Configuration Changes 140
- Logging Commands 140
- About RMON 142
- RMON Features of the Switch 142
- Configuring RMON 143
- Event Actions 144
- Spanning Tree Protocol (STP) 145
- STP Configurations 146
- Sales, Personnel, Marketing 147
- Switch 1 148
- Switch 2 148
- Switch 3 148
- Configuring STP on the Switch 149
- Displaying STP Settings 151
- Disabling and Resetting STP 152
- 14 IP Unicast Routing 153
- Router Interfaces 154
- Populating the Routing Table 154
- Static Routes 155
- Multiple Routes 155
- IP Route Sharing 155
- Proxy ARP 156
- Relative Route Priorities 157
- IP Commands 158
- IP Unicast Routing 160
- Routing Configuration Example 162
- Displaying Router Settings 163
- Configuring DHCP/BOOTP Relay 164
- UDP-Forwarding 165
- UDP-Forwarding Example 166
- ICMP Packet Processing 166
- UDP-Forwarding Commands 166
- A Safety Information 169
- Power Cord 170
- Connections 170
- Lithium Battery 171
- Safety Information 172
- B Supported Standards 173
- Supported Standards 174
- Downloading a New Image 175
- Saving Configuration Changes 176
- Remember to Save 179
- Upgrading Bootloader 179
- Accessing the Bootstrap CLI 179
- Accessing the Bootloader CLI 180
- Boot Option Commands 181
- D Troubleshooting 183
- Troubleshooting 184
- Port Configuration 185
- Debug Tracing 187
- TOP Command 187
- • [email protected] 188
- Numerics 189
Related products and manuals for Network switches Allied Telesis Summit 24
(39 pages)© 2020, manymanuals.com. All rights reserved. | 0.473 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals