Chapter 5: Quality of Service

Each ACL contains rules that define the matching criteria for data packets. The ACL checks each packet against its rules, to determine if there is a match. If the packet matches the ACL’s rules, the ACL performs its configured action: either permit or deny the packet.

The EX2500 switch supports the following ACL types:

„MAC Extended ACLs

„IP Standard ACLs

„IP Extended ACLs

MAC Extended ACLs

The switch supports up to 127 MAC Extended ACLs, numbered from 1 through

127. Use MAC Extended ACLs to filter traffic using the following criteria:

„Source or destination MAC address

„VLAN

„Ethernet protocol

„User priority criteria

To create a MAC Extended ACL:

ex2500(config)# access-list mac extended 1 ex2500(config-ext-macl)#

To delete a MAC Extended ACL:

ex2500(config)# no access-list mac extended 1 ex2500(config)#

IP Standard ACLs

The switch supports up to 128 IP ACLs (standard and extended), numbered from 128 through 254. Use IP Standard ACLs to filter traffic using source IP address or network mask and destination IP address or network mask.

To create an IP Standard ACL:

ex2500(config)# access-list ip 128 standard ex2500(config-std-nacl)#

To delete an IP Standard ACL:

ex2500(config)# no access-list ip 128 standard ex2500(config)#

Using ACL Filters „ 53

Page 67
Image 67
Juniper Networks EX2500 MAC Extended ACLs, IP Standard ACLs, To delete a MAC Extended ACL, To delete an IP Standard ACL