Netgear XCM8810 - 8800 SERIES 10-SLOT CHASSIS SWITCH ユーザーズマニュアル
Chapter 13. ACLs
|
325
NETGEAR 8800 User Manual
entry voiceService {
if {
vlan-id 100;
} then {
meter voiceServiceMeter;
}
}
entry videoService {
if {
vlan-id 101;
} then {
meter videoServiceMeter;
}
}
…and so on.
To bind this ACL to a port with
vlan-id
match criteria use the following command:
config access-list myServices port <N>
ACL Mechanisms
For many applications of ACLs, it is not necessary to know the details of how ACLs work.
However, if you find that your application of ACLs is constrained by hardware limitations, you
can often rearrange the ACLs to use the hardware more efficiently. The following sections go
into some detail about how the ACLs use hardware resources, and some suggestions about
how to reorder or rewrite ACLs to use fewer resources.
However, if you find that your application of ACLs is constrained by hardware limitations, you
can often rearrange the ACLs to use the hardware more efficiently. The following sections go
into some detail about how the ACLs use hardware resources, and some suggestions about
how to reorder or rewrite ACLs to use fewer resources.
ACL Slices and Rules
The NETGEAR 8800 uses slices that can apply to any of the supported ports. An ACL
applied to a port may be supported by any of the slices.
applied to a port may be supported by any of the slices.
The slice support for the cards is as follows:
•
XCM888F—
•
Its 8 ports have 4 slices with each slice having enough memory for 128 egress rules.
•
Its 8 ports have 16 slices with each slice having enough memory for 256 ingress
rules.
•
XCM8808X—
•
Each group of 2 ports has 4 slices with each slice having enough memory for 128
egress rules.