Chapter 20

Table 20-2. Sample Standard ACL Rules

To. . .

Enter. . .

 

 

• Replace the existing DSCP with a

access-list MyAccessList1 6 permit

DSCP of 5 for all traffic that has a

remark-diffserv 5 mask 10.10.80.0

source IP address in the 10.10.80

0.0.0.255

subnet.

 

• Mask the three least significant bits

 

of the DSCP

 

 

 

Use the layer 2 priority of the packet

access-list MyAccessList1 7 permit

to classify all traffic that has a source

use-l2 11.11.11.0 0.0.0.255

address in the 11.11.11 subnet

 

 

 

Use the DSCP in the packet to classify

access-list MyAccessList1 8 permit

all traffic that has a source IP address

use-diffserv host 199.93.239.168

of 199.93.239.168

 

 

 

• Use the DSCP in the packet to

access-list MyAccessList1 9 permit

classify all traffic that has a source

use-diffserv mask host 3.3.3.3

IP address of 3.3.3.3

 

• Mask the three least significant bits

 

of the DSCP

 

 

 

Assign a priority of 2 to all traffic that

access-list MyAccessList1 10 permit

has a source IP address of 1.1.1.1

use-priority 2 host 1.1.1.1

 

 

Block all traffic that has a source IP

access-list MyAccessList1 11 deny

address is 10.1.0.55

10.1.0.55

 

 

 

2 of 2

 

 

Sample Output: The following table provides examples of extended ACL rules.

Extended ACL

Rules

Table 20-3. Sample Extended ACL Rules

To . . .

Enter . . .

 

 

Use the DSCP in the packet to

access-list MyAcessList2 1 permit use-

classify all traffic that has a:

diffserv ip host 199.93.239.168 1.1.1.0

• Source IP address of

0.0.0.255

 

199.93.239.168

 

Destination address in the 1.1.1 subnet

1 of 3

20-6

Command Reference Guide for the Avaya P580 and P882 Multiservice Switches, v6.1

Page 420
Image 420
Avaya 106760804 manual Sample Extended ACL Rules