set policy rule

 

 

 

 

 

profile‐index

Specifies a policy profile number to which this rule will be assigned.

 

 

Policy profiles are configured with the set policy profile command as

 

 

described in set policy profile” on page 11‐4. Valid profile‐index values

 

 

are 1255.

 

 

 

 

ether

Specifies that the rule should apply to traffic with the specified type field

 

 

 

in Ethernet II packet.

 

 

 

 

 

ipproto

Specifies that the rule should apply to traffic with the specified Protocol

 

 

field in IP packet.

 

 

 

 

 

ipdestsocket

Specifies that the rule should apply to traffic with the specified

 

 

destination IP address with optional post‐fixed port.

 

 

 

 

ipsourcesocket

Specifies that the rule should apply to traffic with the specified source IP

 

 

 

address, with optional post‐fixed port.

 

 

 

 

 

iptos

Specifies that the rule should apply to traffic with the specified Type of

 

 

Service field in IP packet.

 

 

 

 

 

macdest

Specifies that the rule should apply to traffic with the specified MAC

 

 

destination address.

 

 

 

 

macsource

Specifies that the rule should apply to traffic with the specified MAC

 

 

 

source address.

 

 

 

 

 

tcpdestport

Specifies that the rule should apply to traffic with the specified TCP

 

 

destination port.

 

 

 

 

 

tcpsourceport

Specifies that the rule should apply to traffic with the specified TCP

 

 

source port.

 

 

 

 

 

udpdestport

Specifies that the rule should apply to traffic with the specified UDP

 

 

destination port.

 

 

 

 

 

udpsourceport

Specifies that the rule should apply to traffic with the specified UDP

 

 

source port.

 

 

 

 

 

data

Specifies the code for the specified traffic classifier (listed above). This

 

 

value is dependent on the classification type entered. Refer to Table 11‐3

 

 

for valid values for each classification type.

 

 

 

 

 

mask mask

(Optional) Specifies the number of significant bits to match, dependent on

 

 

the data value entered. Refer to Table 11‐3 for valid values for each

 

 

classification type and data value.

 

 

 

 

 

vlan vlan

Specifies the action of the rule is to classify to a VLAN ID.

 

 

 

 

cos cos

Specifies the action of the rule is to classify to a Class‐of‐Service ID. Valid

 

 

 

values are 0 ‐ 4095. A value of ‐1 indicates that no CoS forwarding

 

 

behavior modification is desired. (Not supported on B3, C3, and G3.)

 

 

 

 

 

drop forward

Specifies that packets within this classification will be dropped or

 

 

forwarded.

 

 

 

 

Defaults

 

 

 

None.

 

 

Mode

 

 

Switch command, read‐write.

SecureStack C3 Configuration Guide 11-11

Page 361
Image 361
Enterasys Networks 9034313-07 manual Ether, Ipproto, Ipdestsocket, Ipsourcesocket, Iptos, Macdest, Macsource, Tcpdestport