Juniper Networks EX2500 User Manual
Using ACL Filters
53
Chapter 5: Quality of Service
Each ACL contains rules that define the matching criteria for data packets. The ACL
checks each packet against its rules, to determine if there is a match. If the packet
matches the ACL’s rules, the ACL performs its configured action: either permit or
deny the packet.
checks each packet against its rules, to determine if there is a match. If the packet
matches the ACL’s rules, the ACL performs its configured action: either permit or
deny the packet.
The EX2500 switch supports the following ACL types:
MAC Extended ACLs
IP Standard ACLs
IP Extended ACLs
MAC Extended ACLs
The switch supports up to 127 MAC Extended ACLs, numbered from 1 through
127. Use MAC Extended ACLs to filter traffic using the following criteria:
127. Use MAC Extended ACLs to filter traffic using the following criteria:
Source or destination MAC address
VLAN
Ethernet protocol
User priority criteria
To create a MAC Extended ACL:
ex2500(config)# access-list mac extended 1
ex2500(config-ext-macl)#
ex2500(config-ext-macl)#
To delete a MAC Extended ACL:
ex2500(config)# no access-list mac extended 1
ex2500(config)#
ex2500(config)#
IP Standard ACLs
The switch supports up to 128 IP ACLs (standard and extended), numbered from
128 through 254. Use IP Standard ACLs to filter traffic using source IP address or
network mask and destination IP address or network mask.
128 through 254. Use IP Standard ACLs to filter traffic using source IP address or
network mask and destination IP address or network mask.
To create an IP Standard ACL:
ex2500(config)# access-list ip 128 standard
ex2500(config-std-nacl)#
ex2500(config-std-nacl)#
To delete an IP Standard ACL:
ex2500(config)# no access-list ip 128 standard
ex2500(config)#
ex2500(config)#