ACCESS CONTROL LIST COMMANDS

The control-code bitmask is a decimal number (representing an equivalent bit mask) that is applied to the control code. Enter a decimal number, where the equivalent binary bit “1” means to match a bit and “0” means to ignore a bit. The following bits may be specified:

1 (fin) – Finish

2 (syn) – Synchronize

4 (rst) – Reset

8 (psh) – Push

16 (ack) – Acknowledgement

32 (urg) – Urgent pointer

For example, use the code value and mask below to catch packets with the following flags set:

SYN flag valid, use “control-code 2 2”

Both SYN and ACK valid, use “control-code 18 18” SYN valid and ACK invalid, use “control-code 2 18”

Example

This example accepts any incoming packets if the source address is within subnet 10.7.1.x. For example, if the rule is matched; i.e., the rule (10.7.1.0

&255.255.255.0) equals the masked address (10.7.1.2 & 255.255.255.0), the packet passes through.

Console(config-ext-acl)#permit 10.7.1.1 255.255.255.0 any Console(config-ext-acl)#

This allows TCP packets from class C addresses 192.168.1.0 to any destination address when set for destination TCP port 80 (i.e., HTTP).

Console(config-ext-acl)#permit 192.168.1.0 255.255.255.0 any destination-port 80

Console(config-ext-acl)#

This permits all TCP packets from class C addresses 192.168.1.0 with the TCP control code set to “SYN.”

Console(config-ext-acl)#permit tcp 192.168.1.0 255.255.255.0 any control-flag 2 2

Console(config-ext-acl)#

4-125

Page 366 Page 368
Page 367
Image 367
SMC Networks TigerSwitch manual 125
Page 366 Page 368

TigerSwitch specifications

The SMC Networks TigerSwitch series represents a robust line of Ethernet switches designed to cater to a wide range of networking needs, from small businesses to enterprise environments. With a strong emphasis on performance, reliability, and ease of use, the TigerSwitch series has garnered a reputation for delivering effective solutions for today’s demanding data communication requirements.

One of the standout features of the TigerSwitch is its support for Gigabit Ethernet, which enables higher data transfer rates and reduced latency. This performance boost is crucial for businesses that rely on bandwidth-heavy applications such as VoIP, video conferencing, and large file transfers. Many models in the series come with multiple Gigabit Ethernet ports, providing businesses with the flexibility to connect various devices and expand their networks seamlessly.

The TigerSwitch series also incorporates advanced Layer 2 switching capabilities, including features such as VLAN support and QoS (Quality of Service). VLAN support allows network administrators to segment network traffic, enhancing security and improving overall network performance. By segregating traffic based on user groups or applications, VLANs help manage bandwidth more effectively. QoS is particularly important in environments where voice and video services compete for bandwidth, as it prioritizes critical applications ensuring minimal interruptions in service quality.

Another key characteristic of the TigerSwitch is its user-friendly management interface. Many models come with web-based management capabilities, making it simpler for network administrators to configure settings, monitor performance, and troubleshoot issues. Additionally, the series supports SNMP (Simple Network Management Protocol), allowing for centralized network management and monitoring, which is essential for larger networks.

The TigerSwitch series also promotes energy efficiency, aligning with modern eco-friendly practices. Many of the switches feature Power over Ethernet (PoE) support, allowing them to deliver power to connected devices such as IP cameras and wireless access points over the same Ethernet cable used for data. This not only simplifies cabling requirements but also contributes to reducing overall power consumption, which is a consideration for both cost savings and environmental impact.

In conclusion, the SMC Networks TigerSwitch series stands out due to its combination of performance, advanced features, and ease of management. With its Gigabit Ethernet capabilities, VLAN and QoS support, user-friendly interfaces, and energy-efficient design, the TigerSwitch is well-equipped to meet the diverse needs of modern networking environments, offering reliable solutions that cater to both current demands and future expansions.
Top Page Image Contents