Page 14 | AlliedWare Plus™ OS How To Note
Examples
ExamplesBlocking all multicast traffic
This example uses an interface ACL with an action of deny.
Consider a situation where multiple clients are attached to the switch, with each client
attached to a different port. Each client has a specific service, which includes a set of allowed
traffic types.
The client on port 1.0.10 is using a service that does not allow any multicast packets to be
sent. To configure this:
1. Create an ACL to match and deny all packets with a multicast destination address. To do
this, enter global configuration mode and use the command:
awplus(config)#access-list 3100 deny ip any 224.0.0.0/4
2. Attach the ACL to port 1.0.10. To do this, use the commands:
awplus(config)#interface port1.0.10
awplus(config-if)#ip access-group 3100
3. Verify the configuration.
To see the ACL ID number and keywords, return to privileged exec mode and enter the
command:
awplus#show access-list
To see the ACLs that are attached to port 1.0.10, enter the command:
awplus#show interface port1.0.10 access-group