CONFIGURING THE SWITCH

CLI – This example shows how to create an Ingress MAC ACL and bind it to a port. You can then see that the order of the rules have been changed by the mask.

Console(config)#access-list mac M4

4-139

Console(config-mac-acl)#permit any any

4-140

Console(config-mac-acl)#deny tagged-eth2 00-11-11-11-11-11

 

ff-ff-ff-ff-ff-ff any vid 3

4-140

Console(config-mac-acl)#end

 

Console#show access-list

4-150

MAC access-list M4:

 

permit any any

 

deny tagged-eth2 host 00-11-11-11-11-11 any vid 3

 

Console(config)#access-list mac mask-precedence in

4-143

Console(config-mac-mask-acl)#mask pktformat ff-ff-ff-ff-ff-ff any vid

4-144

 

Console(config-mac-mask-acl)#exit

 

Console(config)#interface ethernet 1/12

4-171

Console(config-if)#mac access-group M4 in

4-146

Console(config-if)#end Console#show access-list MAC access-list M4:

deny tagged-eth2 host 00-11-11-11-11-11 any vid 3 permit any any

MAC ingress mask ACL:

mask pktformat host any vid Console#

Binding a Port to an Access Control List

After configuring the Access Control Lists (ACL), you can bind the ports that need to filter traffic to the appropriate ACLs. You can only bind a port to one ACL for each basic type – IP ingress, IP egress, MAC ingress and MAC egress.

Command Usage

You must configure a mask for an ACL rule before you can bind it to a port.

This switch supports ACLs for both ingress and egress filtering. However, you can only bind one IP ACL and one MAC ACL to any port for ingress filtering, and one IP ACL and one MAC ACL to any port for egress filtering. In other words, only four ACLs can be bound to an interface – Ingress IP ACL, Egress IP ACL, Ingress MAC ACL and Egress MAC ACL.

3-112

Page 167 Page 169
Page 168
Image 168
SMC Networks SMC6824M manual Binding a Port to an Access Control List, 112
Page 167 Page 169

SMC6824M specifications

The SMC Networks SMC6824M is a robust and reliable managed switch that caters to the needs of small to mid-sized businesses, as well as enterprise environments. This switch is designed to provide enhanced performance, scalability, and security for network infrastructures that require efficient traffic management and comprehensive control.

One of the key features of the SMC6824M is its 24 10/100/1000BASE-T ports, which offer lightning-fast Ethernet connectivity. These ports are capable of auto-negotiation, allowing devices to automatically adjust their settings for optimal performance, making it easier to integrate various hardware into existing networks. Additionally, the switch includes four Gigabit SFP slots for fiber uplinks, which allow for extended connectivity options and improved network design.

The SMC6824M employs advanced Layer 2 and Layer 3 functionalities, giving network administrators the tools they need to manage their networks effectively. It supports features like VLAN (Virtual Local Area Network) support and Quality of Service (QoS), ensuring efficient bandwidth management and enhanced performance for critical applications. Through VLAN segmentation, it can isolate network traffic for different departments or functions, enhancing security and reducing congestion.

The switch also offers comprehensive network management capabilities through SNMP (Simple Network Management Protocol) and a web-based interface, enabling easy configuration, monitoring, and troubleshooting. The SMC6824M includes support for port mirroring, which is important for diagnostics and monitoring network performance.

Another significant characteristic of the SMC6824M is its redundancy features, which include IEEE 802.1d Spanning Tree Protocol (STP) to prevent loops and provide network resilience. This is essential for maintaining continuous operation, especially in dynamic environments where network availability is critical.

In terms of security, the SMC6824M supports 802.1X port-based authentication, ensuring that only authorized devices gain access to the network. This feature is crucial for protecting sensitive data and maintaining the integrity of the network.

Overall, the SMC Networks SMC6824M is a versatile and feature-rich managed switch that delivers the performance and flexibility required to support growing networks. Its combination of layer management, security features, and user-friendly interface makes it an excellent choice for organizations looking to enhance their network infrastructure.
Top Page Image Contents