Dell Force10 Podręcznik Użytkownika Strona 152
- Strona / 154
- Spis treści
- BOOKMARKI
Oceniono. / 5. Na podstawie oceny klientów
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable
this capability, traffic with particular flows that are traversing through the ingress
and egress interfaces are examined and, appropriate ACLs can be applied in both
the ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).
Related
Commands
deny — assigns a IP ACL filter to deny IP packets.
ip access-list standard — creates a standard ACL.
seq
Assign a sequence number to a deny or permit filter in an extended IP access list while creating the filter.
Syntax
seq sequence-number {deny | permit} {source [mask] | any | host
ip-address}} [count [byte] [dscp value] [order] [fragments]
[log [interval minutes] [threshold-in-msgs [count] [monitor]
Parameters
sequence-
number
Enter a number from 0 to 4294967290. The range is from 0
to 65534.
deny Enter the keyword deny to configure a filter to drop packets
meeting this condition.
permit Enter the keyword permit to configure a filter to forward
packets meeting this criteria.
source Enter an IP address in dotted decimal format of the network
from which the packet was received.
mask (OPTIONAL) Enter a network mask in /prefix format (/x) or
A.B.C.D. The mask, when specified in A.B.C.D format, may be
either contiguous or non-contiguous.
any Enter the keyword any to specify that all routes are subject
to the filter.
count (OPTIONAL) Enter the keyword count to count packets the
filter processes.
byte (OPTIONAL) Enter the keyword byte to count bytes the filter
processes.
dscp (OPTIONAL) Enter the keyword dcsp to match to the IP
DCSCP values.
152
Access Control Lists (ACL)
- 9.5(0.1) 1
- Notes, Cautions, and Warnings 2
- Contents 3
- About this Guide 48
- Audience 49
- Conventions 49
- Information Icons 49
- CLI Basics 50
- Navigating the CLI 51
- Obtaining Help 51
- Using the Keyword no Command 53
- Filtering show Commands 53
- Command Modes 54
- CONFIGURATION Mode 55
- INTERFACE Mode 55
- IP ACCESS LIST Mode 55
- LINE Mode 56
- MAC ACCESS LIST Mode 56
- MULTIPLE SPANNING TREE Mode 56
- PREFIX-LIST Mode 57
- PROTOCOL GVRP Mode 57
- ROUTE-MAP Mode 57
- ROUTER OSPF Mode 57
- ROUTER RIP Mode 58
- SPANNING TREE Mode 58
- File Management 59
- HTTP Copy via CLI 63
- Control and Monitoring 100
- Access Control Lists (ACL) 140
- Common IP ACL Commands 143
- Standard IP ACL Commands 147
- Extended IP ACL Commands 154
- Standard MAC ACL Commands 183
- Extended MAC ACL Commands 190
- IP Prefix List Commands 195
- Route Map Commands 200
- BGPv4 Commands 310
- MBGP Commands 392
- IPv6 BGP Commands 398
- IPv6 MBGP Commands 401
- CAM Profile Commands 403
- Control Plane Policing (CoPP) 409
- Data Center Bridging (DCB) 414
- Debugging and Diagnostics 464
- Buffer Tuning Commands 466
- Hardware Commands 472
- Equal Cost Multi-Path (ECMP) 503
- FIPS Cryptography 511
- *1 - - - 526
- 100 0X0EFC00 1 2 17 526
- GARP VLAN Registration (GVRP) 535
- UDP Broadcast 609
- IPv4 Routing 613
- IPv6 ACL Commands 664
- IPv6 Basics 673
- System (IS-IS) 792
- Virtual LAN (VLAN) Commands 856
- LLDP-MED Commands 874
- NLB Unicast Mode Scenario 882
- NLB Multicast Mode Scenario 883
- Multicast 912
- IPv6 Multicast Commands 918
- OSPFv2 Commands 924
- OSPFv3 Commands 981
- Policy-based Routing (PBR) 1004
- PIM-Sparse Mode (PIM-SM) 1013
- IPv6 PIM-Sparse Mode Commands 1034
- Port Monitoring 1044
- Private VLAN (PVLAN) 1050
- Quality of Service (QoS) 1072
- Per-Port QoS Commands 1073
- Policy-Based QoS Commands 1078
- Remote Monitoring (RMON) 1130
- Security 1152
- RADIUS Commands 1174
- TACACS+ Commands 1180
- SSH Server and SCP Commands 1183
- Secure DHCP Commands 1201
- Important Points to Remember 1208
- Service Provider Bridging 1216
- (SNMP) and Syslog 1221
- Syslog Commands 1240
- Stacking 1255
- Storm Control 1264
- Spanning Tree Protocol (STP) 1270
- System Time and Date 1280
- Tunneling 1296
- VLAN Stacking 1322
- Virtual Link Trunking (VLT) 1331
- VRRP for IPv6 Commands 1357
- ICMP Message Types 1363
- SNMP Traps 1365
- FC Flex IO Modules 1370
- FC Flex IO Modules with MXL 1372
- DCB Command 1377
- DCBX Commands 1378
- ETS Commands 1385
- PFC Commands 1395
- I/O Module 1421
- FIP Snooping 1456
- Interfaces 1463
- Port Channel Commands 1479
- IGMP Commands 1482
- IGMP Snooping Commands 1486
- Z9000 S4810 S4820TS6000 1487
- MAC Addressing Commands 1491
- SNMP Commands 1531
Powiązane produkty i podręczniki dla Oprogramowanie Dell Force10
(380 strony)© 2020, manymanuals.pl. Wszelkie prawa zastrzeżone. | 0.039 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Komentarze do niniejszej Instrukcji