Nortel 2350 用户指南
412 Configuring and managing security ACLs
NN47250-500 (320657-F Version 02.01)
Wildcard masks
When you specify source and destination IP addresses in an ACE, you must also include a mask for each in the
form source-ip-addr mask and destination-ip-addr mask.
form source-ip-addr mask and destination-ip-addr mask.
The mask is a wildcard mask. The security ACL checks the bits in IP addresses that correspond to any 0s
(zeros) in the mask, but does not check the bits that correspond to 1s (ones) in the mask. Specify the IP address
and wildcard mask in dotted decimal notation. For example, the IP address and wildcard mask 10.0.0.0 and
0.255.255.255 match all IP addresses that begin with 10 in the first octet.
(zeros) in the mask, but does not check the bits that correspond to 1s (ones) in the mask. Specify the IP address
and wildcard mask in dotted decimal notation. For example, the IP address and wildcard mask 10.0.0.0 and
0.255.255.255 match all IP addresses that begin with 10 in the first octet.
Class of Service
Class-of-service (CoS) assignment determines the priority treatment of packets transmitted by a WSS, corre-
sponding to a forwarding queue on the AP.
sponding to a forwarding queue on the AP.
shows the results of CoS priorities you assign in security
ACLs.
17
User Datagram Protocol (UDP)
46
Resource Reservation Protocol (RSVP)
47
Generic Routing Encapsulation (GRE) protocol
50
Encapsulation Security Payload for IPSec (IPSec-ESP)
51
Authentication Header for IPSec (IPSec-AH)
55
IP Mobility (Mobile IP)
88
Enhanced Interior Gateway Routing Protocol (EIGRP)
89
Open Shortest Path First (OSPF) protocol
103
Protocol Independent Multicast (PIM) protocol
112
Virtual Router Redundancy Protocol (VRRP)
115
Layer Two Tunneling Protocol (L2TP)
Table 2: Class-of-Service (CoS) packet
handling
WMM Priority
Desired
Desired
CLI CoS Value to
Enter
Enter
Background
1 or 2
Best effort
0 or 3
Video
4 or 5
Voice
6 or 7
Table 1: Common IP protocol numbers
Number
IP Protocol