XG Series User's Guide Chapter 5 Command Reference
LAN Information Settings
190
If up to 128 of "ether macfilter" commands have been defined for port ether1, the
subsequent "vlan macfilter" and "lan ip filter" command will be no longer applied.
Upper limit based on rule
128 rules for the entire device.
For the "ether macfilter", "vlan macfilter" and "lan ip filter" commands, the number of
rules to be used varies depending on the contents of the specified acl as shown below.
The number of rules for each ACL is as follows.
- For ACL to set TCP or UDP
Result of multiplication between the number of source ports and the number of
destination ports for TCP or UDP
- For ACL to set ICMP
Result of multiplication between the number of ICMP TYPEs and the number of
ICMP CODEs for ICMP
- For ACL not to set TCP, UDP, or ICMP
1
You can expand the upper limit to use "resource filter distribution" command and change
resource distribution.
Note 4.
Up to 700 commands can be set for the entire device, including the definitions which refer
to ACL such as "ether macfilter", "ether qos aclmap", "vlan macfilter", "vlan ip6filter",
"vlan qos aclmap", "vlan ip6qos aclmap", "lan ip filter", "lan ip dscp", "lan ip6 filter", "lan
ip6 dscp" and "serverinfo filter" commands.
Default Transmit all packets, assuming that the IP filter is not set.