faq обучение настройка
Текущее время: Вс июл 27, 2025 10:55

Часовой пояс: UTC + 3 часа




Начать новую тему Ответить на тему  [ Сообщений: 11 ] 
Автор Сообщение
СообщениеДобавлено: Пт апр 06, 2012 15:14 
Не в сети

Зарегистрирован: Пн сен 18, 2006 11:17
Сообщений: 270
Откуда: SPb
Добрый день!

Перепрошили недавно коммутаторы DES-3526 на версию 6.20.B09 и начались проблемы - время от времени (возможно, после перезагрузки) dhcp_relay переходит в state: disable. До этой прошивки всё было нормально. В логах пусто.
Пожалуйста, поправьте это.

Конфиги и пр. надо приводить?


Вернуться наверх
 Профиль  
 
СообщениеДобавлено: Вт апр 10, 2012 10:18 
Не в сети
Сотрудник D-LINK
Сотрудник D-LINK

Зарегистрирован: Пт янв 21, 2005 11:52
Сообщений: 11212
Откуда: D-Link, Moscow
Dyr писал(а):
...
Конфиги и пр. надо приводить?


Добрый день. Конечно.

_________________
С уважением,
Бигаров Руслан.


Вернуться наверх
 Профиль  
 
СообщениеДобавлено: Вт апр 10, 2012 14:11 
Не в сети

Зарегистрирован: Пн сен 18, 2006 11:17
Сообщений: 270
Откуда: SPb
Пожалуйста:

Скрытый текст: показать
Код:
#-------------------------------------------------------------------
#                       DES-3526 Configuration
#
#                       Firmware: Build 6.20.B09
#        Copyright(C) 2011 D-Link Corporation. All rights reserved.
#-------------------------------------------------------------------


# BASIC

config serial_port baud_rate 9600 auto_logout 10_minutes
enable telnet 23
disable web
config terminal_line default
enable clipaging
debug error_log auto_reboot enabled
disable broadcast_ping_reply

# ACCOUNT LIST

# PASSWORD ENCRYPTION

enable password encryption

# COMMAND LOGGING

disable command logging

# PASSWORD RECOVERY

disable password_recovery

# BNR

config command_prompt des-132

# STORM

config traffic control_trap none
config traffic control 1-5 broadcast disable multicast disable unicast disable action drop threshold 128000

# GM

config sim candidate
disable sim
config sim dp_interval 30
config sim hold_time 100

# SYSLOG

enable syslog
config system_severity trap information
config system_severity log information
create syslog host 1 ipaddress 10.78.77.88 severity all facility local0 udp_port 514 state enable

# QOS

config scheduling 0 max_packet 0 max_latency 0
config scheduling 1 max_packet 0 max_latency 0
config scheduling 2 max_packet 0 max_latency 0
config scheduling 3 max_packet 0 max_latency 0
config 802.1p user_priority 0 1
config 802.1p user_priority 1 0
config 802.1p user_priority 2 0
config 802.1p user_priority 3 1
config 802.1p user_priority 4 2
config 802.1p user_priority 5 2
config 802.1p user_priority 6 3
config 802.1p user_priority 7 3
config 802.1p default_priority 1-26 0
config bandwidth_control 1-26 rx_rate no_limit tx_rate no_limit

# MIRROR

disable mirror

# TRAF-SEGMENTATION

config traffic_segmentation 1-26 forward_list 1-26

# PORT

config ports 1-24 speed auto flow_control disable mdix auto learning enable state enable trap enable
config ports 25 medium_type copper speed auto flow_control disable mdix auto learning enable state enable description "DES-142" trap enable
config ports 25-26 medium_type fiber speed auto flow_control disable learning enable state enable trap enable
config ports 26 medium_type copper speed auto flow_control disable mdix auto learning enable state enable description "DES-131" trap enable

# DDM

config ddm trap disable
config ddm log enable
config ddm ports 25-26 state enable
config ddm ports 25-26 shutdown none

# PORT_LOCK

enable port_security trap_log
config port_security ports 1-24 admin_state enable max_learning_addr 10 lock_address_mode DeleteOnTimeout
config port_security ports 25-26 admin_state disable max_learning_addr 1 lock_address_mode DeleteOnReset

# 8021X

disable 802.1x
config 802.1x auth_protocol radius_eap
config radius parameter timeout 9 retransmit 2
config 802.1x capability ports 1-26 none
config 802.1x auth_parameter ports 1-26 direction both port_control auto quiet_period 60 tx_period 30 supp_timeout 30 server_timeout 30 max_req 2 reauth_period 3600 enable_reauth disable

# SNMPv3

delete snmp community public
delete snmp community private
delete snmp user initial
delete snmp group initial
delete snmp group ReadGroup
delete snmp group WriteGroup
delete snmp view restricted all
delete snmp view CommunityView all
config snmp engineID 800000ab03001e58a37aa8
create snmp view comm-view 1 view_type included
create snmp view comm-view 1.3.6.1.6.3 view_type excluded
create snmp view comm-view 1.3.6.1.6.3.1 view_type included
create snmp view restricted 1.3.6.1.2.1.1 view_type included
create snmp view restricted 1.3.6.1.2.1.11 view_type included
create snmp view restricted 1.3.6.1.6.3.10.2.1 view_type included
create snmp view restricted 1.3.6.1.6.3.11.2.1 view_type included
create snmp view restricted 1.3.6.1.6.3.15.1.1 view_type included
create snmp group public v1 read_view CommunityView notify_view CommunityView
create snmp group public v2c read_view CommunityView notify_view CommunityView
create snmp group private v1 read_view CommunityView write_view CommunityView notify_view CommunityView
create snmp group private v2c read_view CommunityView write_view CommunityView notify_view CommunityView
create snmp group ReadGroup v1 read_view CommunityView notify_view CommunityView
create snmp group ReadGroup v2c read_view CommunityView notify_view CommunityView
create snmp group mama2 v1 read_view comm-view write_view comm-view notify_view comm-view
create snmp group mama2 v2c read_view comm-view write_view comm-view notify_view comm-view
create snmp group maba1 v1 read_view comm-view notify_view comm-view
create snmp group maba1 v2c read_view comm-view notify_view comm-view
create snmp group WriteGroup v1 read_view CommunityView write_view CommunityView notify_view CommunityView
create snmp group WriteGroup v2c read_view CommunityView write_view CommunityView notify_view CommunityView
create snmp community mama2 view comm-view read_write
create snmp community maba1 view comm-view read_only
create snmp host 10.78.77.88 v2c maba1
config snmp coldstart_traps enable
config snmp warmstart_traps enable
enable snmp linkchange traps

# Firm

config configuration trap save disable
config configuration trap upload disable
config configuration trap download disable

# MANAGEMENT

enable snmp traps
enable snmp authenticate traps
config snmp system_name des-132
enable rmon

# VLAN

disable asymmetric_vlan
config vlan default delete 1-26
config vlan default add forbidden 25-26
config vlan default advertisement disable
create vlan 3051 tag 3051
config vlan 3051 add tagged 25-26
config vlan 3051 advertisement enable
create vlan 3114 tag 3114
config vlan 3114 add tagged 25-26
config vlan 3114 add untagged 1-24
config vlan 3114 advertisement enable
disable gvrp
config gvrp 1-24 state disable ingress_checking enable acceptable_frame admit_all pvid 3114
config gvrp 25-26 state disable ingress_checking enable acceptable_frame tagged_only pvid 3051

# FDB

config fdb aging_time 300
config multicast port_filtering_mode 1-26 filter_unregistered_groups

# LOOP_DETECT

enable loopdetect
config loopdetect recover_timer 60
config loopdetect interval 10
config loopdetect mode vlan-based
config loopdetect ports 1-24 state enabled
config loopdetect ports 25-26 state disabled

# MAC_ADDRESS_TABLE_NOTIFICATION

config mac_notification interval 1 historysize 1
enable mac_notification
config mac_notification ports 1-24 enable
config mac_notification ports 25-26 disable

# STP

config stp version mstp
config stp maxage 20 maxhops 20 forwarddelay 15 txholdcount 6 fbpdu disable
config stp priority 32768 instance_id 0
config stp mst_config_id name smartspb.net revision_level 0
config stp trap new_root enable topo_change enable
config stp ports 25-26  state enable
config stp ports 1-24  state disable
disable stp
config stp ports 1-24 externalCost auto hellotime 2 edge true p2p auto
config stp ports 1-24 fbpdu disable
config stp ports 1-24 restricted_role true
config stp ports 1-24 restricted_tcn true
config stp mst_ports 1-26 instance_id 0 internalCost auto priority 128
config stp ports 25-26 externalCost auto hellotime 2 edge false p2p auto
config stp ports 25-26 fbpdu enable
config stp ports 25-26 restricted_role false
config stp ports 25-26 restricted_tcn false

# MULTI FILTER

config max_mcast_group vlanid 1,3051,3114 action drop
config max_mcast_group vlanid 1,3051,3114 max_group infinite
config max_mcast_group ports 1-26 action drop
config max_mcast_group ports 1-26 max_group infinite

# SSH

config ssh server maxsession 8
config ssh server contimeout 300
config ssh server authfail 2
config ssh server rekey never
config ssh server port 22
disable ssh
config ssh user admin authmode password
config ssh user dyr authmode password
config ssh user sp authmode password

# SSL

disable ssl
enable ssl ciphersuite RSA_with_RC4_128_MD5
enable ssl ciphersuite RSA_with_3DES_EDE_CBC_SHA
enable ssl ciphersuite DHE_DSS_with_3DES_EDE_CBC_SHA
enable ssl ciphersuite RSA_EXPORT_with_RC4_40_MD5
config ssl cachetimeout timeout 600

# DNS_RESOLVER

enable dns_resolver
config name_server timeout 3

# SAFE_GUARD

config safeguard_engine state disable cpu_utilization rising_threshold 100 falling_threshold 20 trap_log disable

# TIMERANGE


# security_ACL

create access_profile ethernet destination_mac FF-FF-FF-FF-FF-FF profile_id 4
config access_profile profile_id 4 add access_id 1 ethernet destination_mac 01-00-0C-CC-CC-CD port 1 deny
config access_profile profile_id 4 add access_id 2 ethernet destination_mac 01-00-0C-CC-CC-CD port 2 deny
config access_profile profile_id 4 add access_id 3 ethernet destination_mac 01-00-0C-CC-CC-CD port 3 deny
config access_profile profile_id 4 add access_id 4 ethernet destination_mac 01-00-0C-CC-CC-CD port 4 deny
config access_profile profile_id 4 add access_id 5 ethernet destination_mac 01-00-0C-CC-CC-CD port 5 deny
config access_profile profile_id 4 add access_id 6 ethernet destination_mac 01-00-0C-CC-CC-CD port 6 deny
config access_profile profile_id 4 add access_id 7 ethernet destination_mac 01-00-0C-CC-CC-CD port 7 deny
config access_profile profile_id 4 add access_id 8 ethernet destination_mac 01-00-0C-CC-CC-CD port 8 deny
config access_profile profile_id 4 add access_id 9 ethernet destination_mac 01-00-0C-CC-CC-CD port 9 deny
config access_profile profile_id 4 add access_id 10 ethernet destination_mac 01-00-0C-CC-CC-CD port 10 deny
config access_profile profile_id 4 add access_id 11 ethernet destination_mac 01-00-0C-CC-CC-CD port 11 deny
config access_profile profile_id 4 add access_id 12 ethernet destination_mac 01-00-0C-CC-CC-CD port 12 deny
config access_profile profile_id 4 add access_id 13 ethernet destination_mac 01-00-0C-CC-CC-CD port 13 deny
config access_profile profile_id 4 add access_id 14 ethernet destination_mac 01-00-0C-CC-CC-CD port 14 deny
config access_profile profile_id 4 add access_id 15 ethernet destination_mac 01-00-0C-CC-CC-CD port 15 deny
config access_profile profile_id 4 add access_id 16 ethernet destination_mac 01-00-0C-CC-CC-CD port 16 deny
config access_profile profile_id 4 add access_id 17 ethernet destination_mac 01-00-0C-CC-CC-CD port 17 deny
config access_profile profile_id 4 add access_id 18 ethernet destination_mac 01-00-0C-CC-CC-CD port 18 deny
config access_profile profile_id 4 add access_id 19 ethernet destination_mac 01-00-0C-CC-CC-CD port 19 deny
config access_profile profile_id 4 add access_id 20 ethernet destination_mac 01-00-0C-CC-CC-CD port 20 deny
config access_profile profile_id 4 add access_id 21 ethernet destination_mac 01-00-0C-CC-CC-CD port 21 deny
config access_profile profile_id 4 add access_id 22 ethernet destination_mac 01-00-0C-CC-CC-CD port 22 deny
config access_profile profile_id 4 add access_id 23 ethernet destination_mac 01-00-0C-CC-CC-CD port 23 deny
config access_profile profile_id 4 add access_id 24 ethernet destination_mac 01-00-0C-CC-CC-CD port 24 deny
config access_profile profile_id 4 add access_id 25 ethernet destination_mac 01-00-0C-CC-CC-CD port 25 deny
config access_profile profile_id 4 add access_id 26 ethernet destination_mac 01-00-0C-CC-CC-CD port 26 deny

create access_profile ip destination_ip_mask 240.0.0.0 profile_id 5

create access_profile packet_content_mask offset_16-31 0xFFFF0000 0x0 0x0 0x0 offset_32-47 0xFFFFFFF8 0x0 0x0 0x0 profile_id 252
config access_profile profile_id 252 add access_id 1 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C408 0x0 0x0 0x0 port 1 permit
config access_profile profile_id 252 add access_id 2 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C410 0x0 0x0 0x0 port 2 permit
config access_profile profile_id 252 add access_id 3 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C418 0x0 0x0 0x0 port 3 permit
config access_profile profile_id 252 add access_id 4 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C420 0x0 0x0 0x0 port 4 permit
config access_profile profile_id 252 add access_id 5 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C428 0x0 0x0 0x0 port 5 permit
config access_profile profile_id 252 add access_id 6 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C430 0x0 0x0 0x0 port 6 permit
config access_profile profile_id 252 add access_id 7 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C438 0x0 0x0 0x0 port 7 permit
config access_profile profile_id 252 add access_id 8 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C440 0x0 0x0 0x0 port 8 permit
config access_profile profile_id 252 add access_id 9 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C448 0x0 0x0 0x0 port 9 permit
config access_profile profile_id 252 add access_id 10 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C450 0x0 0x0 0x0 port 10 permit
config access_profile profile_id 252 add access_id 11 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C458 0x0 0x0 0x0 port 11 permit
config access_profile profile_id 252 add access_id 12 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C460 0x0 0x0 0x0 port 12 permit
config access_profile profile_id 252 add access_id 13 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C468 0x0 0x0 0x0 port 13 permit
config access_profile profile_id 252 add access_id 14 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C470 0x0 0x0 0x0 port 14 permit
config access_profile profile_id 252 add access_id 15 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C478 0x0 0x0 0x0 port 15 permit
config access_profile profile_id 252 add access_id 16 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C480 0x0 0x0 0x0 port 16 permit
config access_profile profile_id 252 add access_id 17 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C488 0x0 0x0 0x0 port 17 permit
config access_profile profile_id 252 add access_id 18 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C490 0x0 0x0 0x0 port 18 permit
config access_profile profile_id 252 add access_id 19 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C498 0x0 0x0 0x0 port 19 permit
config access_profile profile_id 252 add access_id 20 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C4A0 0x0 0x0 0x0 port 20 permit
config access_profile profile_id 252 add access_id 21 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C4A8 0x0 0x0 0x0 port 21 permit
config access_profile profile_id 252 add access_id 22 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C4B0 0x0 0x0 0x0 port 22 permit
config access_profile profile_id 252 add access_id 23 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C4B8 0x0 0x0 0x0 port 23 permit
config access_profile profile_id 252 add access_id 24 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C4C0 0x0 0x0 0x0 port 24 permit

create access_profile ip source_ip_mask 255.255.255.248 profile_id 253
config access_profile profile_id 253 add access_id 1 ip source_ip 10.54.196.8 port 1 permit
config access_profile profile_id 253 add access_id 2 ip source_ip 10.54.196.16 port 2 permit
config access_profile profile_id 253 add access_id 3 ip source_ip 10.54.196.24 port 3 permit
config access_profile profile_id 253 add access_id 4 ip source_ip 10.54.196.32 port 4 permit
config access_profile profile_id 253 add access_id 5 ip source_ip 10.54.196.40 port 5 permit
config access_profile profile_id 253 add access_id 6 ip source_ip 10.54.196.48 port 6 permit
config access_profile profile_id 253 add access_id 7 ip source_ip 10.54.196.56 port 7 permit
config access_profile profile_id 253 add access_id 8 ip source_ip 10.54.196.64 port 8 permit
config access_profile profile_id 253 add access_id 9 ip source_ip 10.54.196.72 port 9 permit
config access_profile profile_id 253 add access_id 10 ip source_ip 10.54.196.80 port 10 permit
config access_profile profile_id 253 add access_id 11 ip source_ip 10.54.196.88 port 11 permit
config access_profile profile_id 253 add access_id 12 ip source_ip 10.54.196.96 port 12 permit
config access_profile profile_id 253 add access_id 13 ip source_ip 10.54.196.104 port 13 permit
config access_profile profile_id 253 add access_id 14 ip source_ip 10.54.196.112 port 14 permit
config access_profile profile_id 253 add access_id 15 ip source_ip 10.54.196.120 port 15 permit
config access_profile profile_id 253 add access_id 16 ip source_ip 10.54.196.128 port 16 permit
config access_profile profile_id 253 add access_id 17 ip source_ip 10.54.196.136 port 17 permit
config access_profile profile_id 253 add access_id 18 ip source_ip 10.54.196.144 port 18 permit
config access_profile profile_id 253 add access_id 19 ip source_ip 10.54.196.152 port 19 permit
config access_profile profile_id 253 add access_id 20 ip source_ip 10.54.196.160 port 20 permit
config access_profile profile_id 253 add access_id 21 ip source_ip 10.54.196.168 port 21 permit
config access_profile profile_id 253 add access_id 22 ip source_ip 10.54.196.176 port 22 permit
config access_profile profile_id 253 add access_id 23 ip source_ip 10.54.196.184 port 23 permit
config access_profile profile_id 253 add access_id 24 ip source_ip 10.54.196.192 port 24 permit

create access_profile packet_content_mask offset_16-31 0xFFFF0000 0x0 0x0 0x0 profile_id 254
config access_profile profile_id 254 add access_id 1 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 1 deny
config access_profile profile_id 254 add access_id 2 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 2 deny
config access_profile profile_id 254 add access_id 3 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 3 deny
config access_profile profile_id 254 add access_id 4 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 4 deny
config access_profile profile_id 254 add access_id 5 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 5 deny
config access_profile profile_id 254 add access_id 6 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 6 deny
config access_profile profile_id 254 add access_id 7 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 7 deny
config access_profile profile_id 254 add access_id 8 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 8 deny
config access_profile profile_id 254 add access_id 9 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 9 deny
config access_profile profile_id 254 add access_id 10 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 10 deny
config access_profile profile_id 254 add access_id 11 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 11 deny
config access_profile profile_id 254 add access_id 12 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 12 deny
config access_profile profile_id 254 add access_id 13 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 13 deny
config access_profile profile_id 254 add access_id 14 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 14 deny
config access_profile profile_id 254 add access_id 15 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 15 deny
config access_profile profile_id 254 add access_id 16 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 16 deny
config access_profile profile_id 254 add access_id 17 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 17 deny
config access_profile profile_id 254 add access_id 18 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 18 deny
config access_profile profile_id 254 add access_id 19 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 19 deny
config access_profile profile_id 254 add access_id 20 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 20 deny
config access_profile profile_id 254 add access_id 21 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 21 deny
config access_profile profile_id 254 add access_id 22 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 22 deny
config access_profile profile_id 254 add access_id 23 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 23 deny
config access_profile profile_id 254 add access_id 24 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 24 deny

create access_profile ip source_ip_mask 0.0.0.0 profile_id 255
config access_profile profile_id 255 add access_id 1 ip source_ip 0.0.0.0 port 1 deny
config access_profile profile_id 255 add access_id 2 ip source_ip 0.0.0.0 port 2 deny
config access_profile profile_id 255 add access_id 3 ip source_ip 0.0.0.0 port 3 deny
config access_profile profile_id 255 add access_id 4 ip source_ip 0.0.0.0 port 4 deny
config access_profile profile_id 255 add access_id 5 ip source_ip 0.0.0.0 port 5 deny
config access_profile profile_id 255 add access_id 6 ip source_ip 0.0.0.0 port 6 deny
config access_profile profile_id 255 add access_id 7 ip source_ip 0.0.0.0 port 7 deny
config access_profile profile_id 255 add access_id 8 ip source_ip 0.0.0.0 port 8 deny
config access_profile profile_id 255 add access_id 9 ip source_ip 0.0.0.0 port 9 deny
config access_profile profile_id 255 add access_id 10 ip source_ip 0.0.0.0 port 10 deny
config access_profile profile_id 255 add access_id 11 ip source_ip 0.0.0.0 port 11 deny
config access_profile profile_id 255 add access_id 12 ip source_ip 0.0.0.0 port 12 deny
config access_profile profile_id 255 add access_id 13 ip source_ip 0.0.0.0 port 13 deny
config access_profile profile_id 255 add access_id 14 ip source_ip 0.0.0.0 port 14 deny
config access_profile profile_id 255 add access_id 15 ip source_ip 0.0.0.0 port 15 deny
config access_profile profile_id 255 add access_id 16 ip source_ip 0.0.0.0 port 16 deny
config access_profile profile_id 255 add access_id 17 ip source_ip 0.0.0.0 port 17 deny
config access_profile profile_id 255 add access_id 18 ip source_ip 0.0.0.0 port 18 deny
config access_profile profile_id 255 add access_id 19 ip source_ip 0.0.0.0 port 19 deny
config access_profile profile_id 255 add access_id 20 ip source_ip 0.0.0.0 port 20 deny
config access_profile profile_id 255 add access_id 21 ip source_ip 0.0.0.0 port 21 deny
config access_profile profile_id 255 add access_id 22 ip source_ip 0.0.0.0 port 22 deny
config access_profile profile_id 255 add access_id 23 ip source_ip 0.0.0.0 port 23 deny
config access_profile profile_id 255 add access_id 24 ip source_ip 0.0.0.0 port 24 deny

config filter dhcp_server ports 1-24 state enable
config filter extensive_netbios 1-26 state enable
config filter netbios 1-26 state enable
disable address_binding acl_mode
disable address_binding dhcp_snoop
disable dhcp_relay
disable dhcp_local_relay
config pppoe circuit_id_insertion state disable
disable address_binding arp_inspection

# ACL


create cpu access_profile ip destination_ip_mask 255.255.255.255 profile_id 2
config cpu access_profile profile_id 2 add access_id 1 ip destination_ip 239.255.255.250 port 1-24 deny
create cpu access_profile ethernet destination_mac FF-FF-FF-FF-FF-FF profile_id 4
config cpu access_profile profile_id 4 add access_id 1 ethernet destination_mac 01-00-0C-CC-CC-CD deny
enable cpu_interface_filtering

# SNTP

enable sntp
config time_zone operator + hour 3 min 0
config sntp primary 10.90.90.2 secondary 10.99.99.71 poll-interval 360
config dst repeating s_week 1 s_day sun s_mth 4 s_time 0:0 e_week last e_day sun e_mth 10 e_time 0:0 offset 60

# IPBIND

config address_binding ip_mac ports 1-26 allow_zeroip enable
enable address_binding trap_log
config address_binding dhcp_snoop max_entry ports 1-26 limit 5

# FILTER


# PPPoE_Circuit_ID_Insertion

config pppoe circuit_id_insertion ports 1-26 state enable circuit_id ip

# ROUTE

create iproute default 10.90.90.1 1

# SNOOP

enable igmp_snooping
config igmp_snooping default host_timeout 260 router_timeout 260 leave_timer 1 state enable
config igmp_snooping querier default query_interval 125 max_response_time 10 robustness_variable 2
config igmp_snooping querier default last_member_query_interval 1 state disable
config igmp_snooping 3051 host_timeout 260 router_timeout 260 leave_timer 1 state enable
config igmp_snooping querier 3051 query_interval 125 max_response_time 10 robustness_variable 2
config igmp_snooping querier 3051 last_member_query_interval 1 state disable
config igmp_snooping 3114 host_timeout 260 router_timeout 260 leave_timer 1 state enable
config igmp_snooping querier 3114 query_interval 125 max_response_time 10 robustness_variable 2
config igmp_snooping querier 3114 last_member_query_interval 1 state disable
create multicast_range iptv_0 from 239.195.0.0 to 239.195.0.255
create multicast_range iptv_1 from 239.195.1.0 to 239.195.1.255
create multicast_range iptv_2 from 239.195.2.0 to 239.195.2.255
create multicast_range iptv_3 from 239.195.3.0 to 239.195.3.255
create multicast_range iptv_4 from 239.195.4.0 to 239.195.4.255
create multicast_range iptv_5 from 239.195.5.0 to 239.195.5.255
create multicast_range iptv_6 from 239.195.6.0 to 239.195.6.255
config limited_multicast_addr ports 1-24 add multicast_range iptv_0
config limited_multicast_addr ports 1-24 add multicast_range iptv_1
config limited_multicast_addr ports 1-24 add multicast_range iptv_2
config limited_multicast_addr ports 1-24 add multicast_range iptv_3
config limited_multicast_addr ports 1-24 add multicast_range iptv_4
config limited_multicast_addr ports 1-24 add multicast_range iptv_5
config limited_multicast_addr ports 1-24 add multicast_range iptv_6
config limited_multicast_addr ports 1-24 access permit state enable
config limited_multicast_addr ports 25-26 access permit state disable
config igmp access_authentication ports 1-26 state disable

# LACP

config link_aggregation algorithm mac_source
config lacp_port 1-26 mode passive

# GVLAN


# IP

config ipif System vlan 3051 ipaddress 10.90.90.132/23 state enable
disable autoconfig
config autoconfig timeout 50
config ipif System dhcp_option12 state disable

# ARP

config arp_aging time 1200
config gratuitous_arp send ipif_status_up enable
config gratuitous_arp send dup_ip_detected enable
config gratuitous_arp learning enable

# LLDP

enable lldp
config lldp message_tx_interval 30
config lldp tx_delay 2
config lldp message_tx_hold_multiplier 4
config lldp reinit_delay 2
config lldp notification_interval 5
config lldp ports 1-24 notification disable
config lldp ports 1-24 admin_status disable
config lldp ports 25-26 notification enable
config lldp ports 25-26 admin_status tx_and_rx
config lldp ports 25-26 basic_tlvs port_description system_name system_description system_capabilities enable
config lldp ports 25-26 dot1_tlv_pvid enable
config lldp ports 25-26 dot1_tlv_vlan_name vlanid 1-4094 enable
config lldp ports 25-26 dot1_tlv_protocol_identity eapol enable
config lldp ports 25-26 dot1_tlv_protocol_identity lacp enable
config lldp ports 25-26 dot1_tlv_protocol_identity gvrp enable
config lldp ports 25-26 dot1_tlv_protocol_identity stp enable
config lldp ports 25-26 dot3_tlvs mac_phy_configuration_status link_aggregation maximum_frame_size enable
config lldp ports 25-26 mgt_addr ipv4 10.90.90.132 enable

# ACCESS_AUTHENTICATION_CONTROL

config authen_login default method local
config authen_enable default method local_enable
config authen application console login default
config authen application console enable default
config authen application telnet login default
config authen application telnet enable default
config authen application ssh login default
config authen application ssh enable default
config authen application http login default
config authen application http enable default
config authen parameter response_timeout 0
config authen parameter attempt 3
config authen enable_admin all state enable
config authen enable_operator all state enable
disable authen_policy


# DHCP_RELAY

config dhcp_relay hops 4 time 0
config dhcp_relay option_82 state enable
config dhcp_relay option_82 check disable
config dhcp_relay option_82 policy drop
config dhcp_relay option_82 remote_id default
config dhcp_relay option_60 state disable
config dhcp_relay option_60 default mode drop
config dhcp_relay option_61 state disable
config dhcp_relay option_61 default drop
config dhcp_relay add ipif System 10.78.77.88

# DHCP_LOCAL_RELAY

config dhcp_local_relay option_82 remote_id default
config dhcp_local_relay option_82 ports 1-26 policy keep

#-------------------------------------------------------------------
#             End of configuration file for DES-3526
#-------------------------------------------------------------------


Command: show config effective
Скрытый текст: показать
Код:
# BASIC

config serial_port baud_rate 9600 auto_logout 10_minutes
enable telnet 23
disable web
config terminal_line default
enable clipaging
debug error_log auto_reboot enabled
disable broadcast_ping_reply


# PASSWORD ENCRYPTION

enable password encryption

# COMMAND LOGGING

disable command logging

# PASSWORD RECOVERY

disable password_recovery

# BNR

config command_prompt des-132

# STORM

config traffic control_trap none
config traffic control 1-5 broadcast disable multicast disable unicast disable action drop threshold 128000

# GM

disable sim

# SYSLOG

enable syslog
config system_severity trap information
config system_severity log information
create syslog host 1 ipaddress 10.78.77.88 severity all facility local0 udp_port 514 state enable

# QOS

config scheduling 0 max_packet 0 max_latency 0
config scheduling 1 max_packet 0 max_latency 0
config scheduling 2 max_packet 0 max_latency 0
config scheduling 3 max_packet 0 max_latency 0
config 802.1p user_priority 0 1
config 802.1p user_priority 1 0
config 802.1p user_priority 2 0
config 802.1p user_priority 3 1
config 802.1p user_priority 4 2
config 802.1p user_priority 5 2
config 802.1p user_priority 6 3
config 802.1p user_priority 7 3
config 802.1p default_priority 1-26 0
config bandwidth_control 1-26 rx_rate no_limit tx_rate no_limit

# MIRROR

disable mirror

# TRAF-SEGMENTATION

config traffic_segmentation 1-26 forward_list 1-26

# PORT

config ports 1-24 speed auto flow_control disable mdix auto learning enable state enable trap enable
config ports 25 medium_type copper speed auto flow_control disable mdix auto learning enable state enable description "DES-142" trap enable
config ports 25-26 medium_type fiber speed auto flow_control disable learning enable state enable trap enable
config ports 26 medium_type copper speed auto flow_control disable mdix auto learning enable state enable description "DES-131" trap enable

# DDM

config ddm trap disable
config ddm log enable
config ddm ports 25-26 state enable
config ddm ports 25-26 shutdown none

# PORT_LOCK

enable port_security trap_log
config port_security ports 1-24 admin_state enable max_learning_addr 10 lock_address_mode DeleteOnTimeout
config port_security ports 25-26 admin_state disable max_learning_addr 1 lock_address_mode DeleteOnReset

# 8021X

disable 802.1x
config radius parameter timeout 9 retransmit 2

# SNMPv3

delete snmp community public
delete snmp community private
delete snmp user initial
delete snmp group initial
delete snmp group ReadGroup
delete snmp group WriteGroup
delete snmp view restricted all
delete snmp view CommunityView all
config snmp engineID 800000ab03001e58a37aa8
create snmp view comm-view 1 view_type included
create snmp view comm-view 1.3.6.1.6.3 view_type excluded
create snmp view comm-view 1.3.6.1.6.3.1 view_type included
create snmp view restricted 1.3.6.1.2.1.1 view_type included
create snmp view restricted 1.3.6.1.2.1.11 view_type included
create snmp view restricted 1.3.6.1.6.3.10.2.1 view_type included
create snmp view restricted 1.3.6.1.6.3.11.2.1 view_type included
create snmp view restricted 1.3.6.1.6.3.15.1.1 view_type included
create snmp group public v1 read_view CommunityView notify_view CommunityView
create snmp group public v2c read_view CommunityView notify_view CommunityView
create snmp group private v1 read_view CommunityView write_view CommunityView notify_view CommunityView
create snmp group private v2c read_view CommunityView write_view CommunityView notify_view CommunityView
create snmp group ReadGroup v1 read_view CommunityView notify_view CommunityView
create snmp group ReadGroup v2c read_view CommunityView notify_view CommunityView
create snmp group mama2 v1 read_view comm-view write_view comm-view notify_view comm-view
create snmp group mama2 v2c read_view comm-view write_view comm-view notify_view comm-view
create snmp group maba1 v1 read_view comm-view notify_view comm-view
create snmp group maba1 v2c read_view comm-view notify_view comm-view
create snmp group WriteGroup v1 read_view CommunityView write_view CommunityView notify_view CommunityView
create snmp group WriteGroup v2c read_view CommunityView write_view CommunityView notify_view CommunityView
create snmp community mama2 view comm-view read_write
create snmp community maba1 view comm-view read_only
create snmp host 10.78.77.88 v2c maba1
config snmp coldstart_traps enable
config snmp warmstart_traps enable
enable snmp linkchange traps

# Firm

config configuration trap save disable
config configuration trap upload disable
config configuration trap download disable

# MANAGEMENT

enable snmp traps
enable snmp authenticate traps
config snmp system_name des-132
enable rmon

# VLAN

disable asymmetric_vlan
config vlan default delete 1-26
config vlan default add forbidden 25-26
config vlan default advertisement disable
create vlan 3051 tag 3051
config vlan 3051 add tagged 25-26
config vlan 3051 advertisement enable
create vlan 3114 tag 3114
config vlan 3114 add tagged 25-26
config vlan 3114 add untagged 1-24
config vlan 3114 advertisement enable
disable gvrp
config gvrp 1-24 state disable ingress_checking enable acceptable_frame admit_all pvid 3114
config gvrp 25-26 state disable ingress_checking enable acceptable_frame tagged_only pvid 3051

# FDB

config fdb aging_time 300
config multicast port_filtering_mode 1-26 filter_unregistered_groups

# LOOP_DETECT

enable loopdetect
config loopdetect recover_timer 60
config loopdetect interval 10
config loopdetect mode vlan-based
config loopdetect ports 1-24 state enabled
config loopdetect ports 25-26 state disabled

# MAC_ADDRESS_TABLE_NOTIFICATION

config mac_notification interval 1 historysize 1
enable mac_notification
config mac_notification ports 1-24 enable
config mac_notification ports 25-26 disable

# STP

disable stp

# MULTI FILTER

config max_mcast_group vlanid 1,3051,3114 action drop
config max_mcast_group vlanid 1,3051,3114 max_group infinite
config max_mcast_group ports 1-26 action drop
config max_mcast_group ports 1-26 max_group infinite

# SSH

disable ssh

# SSL

disable ssl

# DNS_RESOLVER

enable dns_resolver
config name_server timeout 3

# SAFE_GUARD

config safeguard_engine state disable cpu_utilization rising_threshold 100 falling_threshold 20 trap_log disable

# TIMERANGE


# security_ACL

create access_profile ethernet destination_mac FF-FF-FF-FF-FF-FF profile_id 4
config access_profile profile_id 4 add access_id 1 ethernet destination_mac 01-00-0C-CC-CC-CD port 1 deny
config access_profile profile_id 4 add access_id 2 ethernet destination_mac 01-00-0C-CC-CC-CD port 2 deny
config access_profile profile_id 4 add access_id 3 ethernet destination_mac 01-00-0C-CC-CC-CD port 3 deny
config access_profile profile_id 4 add access_id 4 ethernet destination_mac 01-00-0C-CC-CC-CD port 4 deny
config access_profile profile_id 4 add access_id 5 ethernet destination_mac 01-00-0C-CC-CC-CD port 5 deny
config access_profile profile_id 4 add access_id 6 ethernet destination_mac 01-00-0C-CC-CC-CD port 6 deny
config access_profile profile_id 4 add access_id 7 ethernet destination_mac 01-00-0C-CC-CC-CD port 7 deny
config access_profile profile_id 4 add access_id 8 ethernet destination_mac 01-00-0C-CC-CC-CD port 8 deny
config access_profile profile_id 4 add access_id 9 ethernet destination_mac 01-00-0C-CC-CC-CD port 9 deny
config access_profile profile_id 4 add access_id 10 ethernet destination_mac 01-00-0C-CC-CC-CD port 10 deny
config access_profile profile_id 4 add access_id 11 ethernet destination_mac 01-00-0C-CC-CC-CD port 11 deny
config access_profile profile_id 4 add access_id 12 ethernet destination_mac 01-00-0C-CC-CC-CD port 12 deny
config access_profile profile_id 4 add access_id 13 ethernet destination_mac 01-00-0C-CC-CC-CD port 13 deny
config access_profile profile_id 4 add access_id 14 ethernet destination_mac 01-00-0C-CC-CC-CD port 14 deny
config access_profile profile_id 4 add access_id 15 ethernet destination_mac 01-00-0C-CC-CC-CD port 15 deny
config access_profile profile_id 4 add access_id 16 ethernet destination_mac 01-00-0C-CC-CC-CD port 16 deny
config access_profile profile_id 4 add access_id 17 ethernet destination_mac 01-00-0C-CC-CC-CD port 17 deny
config access_profile profile_id 4 add access_id 18 ethernet destination_mac 01-00-0C-CC-CC-CD port 18 deny
config access_profile profile_id 4 add access_id 19 ethernet destination_mac 01-00-0C-CC-CC-CD port 19 deny
config access_profile profile_id 4 add access_id 20 ethernet destination_mac 01-00-0C-CC-CC-CD port 20 deny
config access_profile profile_id 4 add access_id 21 ethernet destination_mac 01-00-0C-CC-CC-CD port 21 deny
config access_profile profile_id 4 add access_id 22 ethernet destination_mac 01-00-0C-CC-CC-CD port 22 deny
config access_profile profile_id 4 add access_id 23 ethernet destination_mac 01-00-0C-CC-CC-CD port 23 deny
config access_profile profile_id 4 add access_id 24 ethernet destination_mac 01-00-0C-CC-CC-CD port 24 deny
config access_profile profile_id 4 add access_id 25 ethernet destination_mac 01-00-0C-CC-CC-CD port 25 deny
config access_profile profile_id 4 add access_id 26 ethernet destination_mac 01-00-0C-CC-CC-CD port 26 deny

create access_profile ip destination_ip_mask 240.0.0.0 profile_id 5

create access_profile packet_content_mask offset_16-31 0xFFFF0000 0x0 0x0 0x0 offset_32-47 0xFFFFFFF8 0x0 0x0 0x0 profile_id 252
config access_profile profile_id 252 add access_id 1 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C408 0x0 0x0 0x0 port 1 permit
config access_profile profile_id 252 add access_id 2 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C410 0x0 0x0 0x0 port 2 permit
config access_profile profile_id 252 add access_id 3 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C418 0x0 0x0 0x0 port 3 permit
config access_profile profile_id 252 add access_id 4 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C420 0x0 0x0 0x0 port 4 permit
config access_profile profile_id 252 add access_id 5 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C428 0x0 0x0 0x0 port 5 permit
config access_profile profile_id 252 add access_id 6 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C430 0x0 0x0 0x0 port 6 permit
config access_profile profile_id 252 add access_id 7 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C438 0x0 0x0 0x0 port 7 permit
config access_profile profile_id 252 add access_id 8 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C440 0x0 0x0 0x0 port 8 permit
config access_profile profile_id 252 add access_id 9 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C448 0x0 0x0 0x0 port 9 permit
config access_profile profile_id 252 add access_id 10 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C450 0x0 0x0 0x0 port 10 permit
config access_profile profile_id 252 add access_id 11 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C458 0x0 0x0 0x0 port 11 permit
config access_profile profile_id 252 add access_id 12 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C460 0x0 0x0 0x0 port 12 permit
config access_profile profile_id 252 add access_id 13 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C468 0x0 0x0 0x0 port 13 permit
config access_profile profile_id 252 add access_id 14 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C470 0x0 0x0 0x0 port 14 permit
config access_profile profile_id 252 add access_id 15 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C478 0x0 0x0 0x0 port 15 permit
config access_profile profile_id 252 add access_id 16 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C480 0x0 0x0 0x0 port 16 permit
config access_profile profile_id 252 add access_id 17 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C488 0x0 0x0 0x0 port 17 permit
config access_profile profile_id 252 add access_id 18 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C490 0x0 0x0 0x0 port 18 permit
config access_profile profile_id 252 add access_id 19 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C498 0x0 0x0 0x0 port 19 permit
config access_profile profile_id 252 add access_id 20 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C4A0 0x0 0x0 0x0 port 20 permit
config access_profile profile_id 252 add access_id 21 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C4A8 0x0 0x0 0x0 port 21 permit
config access_profile profile_id 252 add access_id 22 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C4B0 0x0 0x0 0x0 port 22 permit
config access_profile profile_id 252 add access_id 23 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C4B8 0x0 0x0 0x0 port 23 permit
config access_profile profile_id 252 add access_id 24 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 offset_32-47 0xA36C4C0 0x0 0x0 0x0 port 24 permit

create access_profile ip source_ip_mask 255.255.255.248 profile_id 253
config access_profile profile_id 253 add access_id 1 ip source_ip 10.54.196.8 port 1 permit
config access_profile profile_id 253 add access_id 2 ip source_ip 10.54.196.16 port 2 permit
config access_profile profile_id 253 add access_id 3 ip source_ip 10.54.196.24 port 3 permit
config access_profile profile_id 253 add access_id 4 ip source_ip 10.54.196.32 port 4 permit
config access_profile profile_id 253 add access_id 5 ip source_ip 10.54.196.40 port 5 permit
config access_profile profile_id 253 add access_id 6 ip source_ip 10.54.196.48 port 6 permit
config access_profile profile_id 253 add access_id 7 ip source_ip 10.54.196.56 port 7 permit
config access_profile profile_id 253 add access_id 8 ip source_ip 10.54.196.64 port 8 permit
config access_profile profile_id 253 add access_id 9 ip source_ip 10.54.196.72 port 9 permit
config access_profile profile_id 253 add access_id 10 ip source_ip 10.54.196.80 port 10 permit
config access_profile profile_id 253 add access_id 11 ip source_ip 10.54.196.88 port 11 permit
config access_profile profile_id 253 add access_id 12 ip source_ip 10.54.196.96 port 12 permit
config access_profile profile_id 253 add access_id 13 ip source_ip 10.54.196.104 port 13 permit
config access_profile profile_id 253 add access_id 14 ip source_ip 10.54.196.112 port 14 permit
config access_profile profile_id 253 add access_id 15 ip source_ip 10.54.196.120 port 15 permit
config access_profile profile_id 253 add access_id 16 ip source_ip 10.54.196.128 port 16 permit
config access_profile profile_id 253 add access_id 17 ip source_ip 10.54.196.136 port 17 permit
config access_profile profile_id 253 add access_id 18 ip source_ip 10.54.196.144 port 18 permit
config access_profile profile_id 253 add access_id 19 ip source_ip 10.54.196.152 port 19 permit
config access_profile profile_id 253 add access_id 20 ip source_ip 10.54.196.160 port 20 permit
config access_profile profile_id 253 add access_id 21 ip source_ip 10.54.196.168 port 21 permit
config access_profile profile_id 253 add access_id 22 ip source_ip 10.54.196.176 port 22 permit
config access_profile profile_id 253 add access_id 23 ip source_ip 10.54.196.184 port 23 permit
config access_profile profile_id 253 add access_id 24 ip source_ip 10.54.196.192 port 24 permit

create access_profile packet_content_mask offset_16-31 0xFFFF0000 0x0 0x0 0x0 profile_id 254
config access_profile profile_id 254 add access_id 1 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 1 deny
config access_profile profile_id 254 add access_id 2 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 2 deny
config access_profile profile_id 254 add access_id 3 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 3 deny
config access_profile profile_id 254 add access_id 4 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 4 deny
config access_profile profile_id 254 add access_id 5 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 5 deny
config access_profile profile_id 254 add access_id 6 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 6 deny
config access_profile profile_id 254 add access_id 7 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 7 deny
config access_profile profile_id 254 add access_id 8 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 8 deny
config access_profile profile_id 254 add access_id 9 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 9 deny
config access_profile profile_id 254 add access_id 10 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 10 deny
config access_profile profile_id 254 add access_id 11 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 11 deny
config access_profile profile_id 254 add access_id 12 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 12 deny
config access_profile profile_id 254 add access_id 13 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 13 deny
config access_profile profile_id 254 add access_id 14 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 14 deny
config access_profile profile_id 254 add access_id 15 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 15 deny
config access_profile profile_id 254 add access_id 16 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 16 deny
config access_profile profile_id 254 add access_id 17 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 17 deny
config access_profile profile_id 254 add access_id 18 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 18 deny
config access_profile profile_id 254 add access_id 19 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 19 deny
config access_profile profile_id 254 add access_id 20 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 20 deny
config access_profile profile_id 254 add access_id 21 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 21 deny
config access_profile profile_id 254 add access_id 22 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 22 deny
config access_profile profile_id 254 add access_id 23 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 23 deny
config access_profile profile_id 254 add access_id 24 packet_content_mask offset_16-31 0x8060000 0x0 0x0 0x0 port 24 deny

create access_profile ip source_ip_mask 0.0.0.0 profile_id 255
config access_profile profile_id 255 add access_id 1 ip source_ip 0.0.0.0 port 1 deny
config access_profile profile_id 255 add access_id 2 ip source_ip 0.0.0.0 port 2 deny
config access_profile profile_id 255 add access_id 3 ip source_ip 0.0.0.0 port 3 deny
config access_profile profile_id 255 add access_id 4 ip source_ip 0.0.0.0 port 4 deny
config access_profile profile_id 255 add access_id 5 ip source_ip 0.0.0.0 port 5 deny
config access_profile profile_id 255 add access_id 6 ip source_ip 0.0.0.0 port 6 deny
config access_profile profile_id 255 add access_id 7 ip source_ip 0.0.0.0 port 7 deny
config access_profile profile_id 255 add access_id 8 ip source_ip 0.0.0.0 port 8 deny
config access_profile profile_id 255 add access_id 9 ip source_ip 0.0.0.0 port 9 deny
config access_profile profile_id 255 add access_id 10 ip source_ip 0.0.0.0 port 10 deny
config access_profile profile_id 255 add access_id 11 ip source_ip 0.0.0.0 port 11 deny
config access_profile profile_id 255 add access_id 12 ip source_ip 0.0.0.0 port 12 deny
config access_profile profile_id 255 add access_id 13 ip source_ip 0.0.0.0 port 13 deny
config access_profile profile_id 255 add access_id 14 ip source_ip 0.0.0.0 port 14 deny
config access_profile profile_id 255 add access_id 15 ip source_ip 0.0.0.0 port 15 deny
config access_profile profile_id 255 add access_id 16 ip source_ip 0.0.0.0 port 16 deny
config access_profile profile_id 255 add access_id 17 ip source_ip 0.0.0.0 port 17 deny
config access_profile profile_id 255 add access_id 18 ip source_ip 0.0.0.0 port 18 deny
config access_profile profile_id 255 add access_id 19 ip source_ip 0.0.0.0 port 19 deny
config access_profile profile_id 255 add access_id 20 ip source_ip 0.0.0.0 port 20 deny
config access_profile profile_id 255 add access_id 21 ip source_ip 0.0.0.0 port 21 deny
config access_profile profile_id 255 add access_id 22 ip source_ip 0.0.0.0 port 22 deny
config access_profile profile_id 255 add access_id 23 ip source_ip 0.0.0.0 port 23 deny
config access_profile profile_id 255 add access_id 24 ip source_ip 0.0.0.0 port 24 deny

config filter dhcp_server ports 1-24 state enable
config filter extensive_netbios 1-26 state enable
config filter netbios 1-26 state enable
disable address_binding acl_mode
disable address_binding dhcp_snoop
disable dhcp_relay
disable dhcp_local_relay
config pppoe circuit_id_insertion state disable
disable address_binding arp_inspection

# ACL


create cpu access_profile ip destination_ip_mask 255.255.255.255 profile_id 2
config cpu access_profile profile_id 2 add access_id 1 ip destination_ip 239.255.255.250 port 1-24 deny
create cpu access_profile ethernet destination_mac FF-FF-FF-FF-FF-FF profile_id 4
config cpu access_profile profile_id 4 add access_id 1 ethernet destination_mac 01-00-0C-CC-CC-CD deny
enable cpu_interface_filtering

# SNTP

enable sntp
config time_zone operator + hour 3 min 0
config sntp primary 10.90.90.2 secondary 10.99.99.71 poll-interval 360
config dst repeating s_week 1 s_day sun s_mth 4 s_time 0:0 e_week last e_day sun e_mth 10 e_time 0:0 offset 60

# IPBIND

config address_binding ip_mac ports 1-26 allow_zeroip enable
enable address_binding trap_log

# FILTER


# PPPoE_Circuit_ID_Insertion


# ROUTE

create iproute default 10.90.90.1 1

# SNOOP

enable igmp_snooping
config igmp_snooping default host_timeout 260 router_timeout 260 leave_timer 1 state enable
config igmp_snooping querier default query_interval 125 max_response_time 10 robustness_variable 2
config igmp_snooping querier default last_member_query_interval 1 state disable
config igmp_snooping 3051 host_timeout 260 router_timeout 260 leave_timer 1 state enable
config igmp_snooping querier 3051 query_interval 125 max_response_time 10 robustness_variable 2
config igmp_snooping querier 3051 last_member_query_interval 1 state disable
config igmp_snooping 3114 host_timeout 260 router_timeout 260 leave_timer 1 state enable
config igmp_snooping querier 3114 query_interval 125 max_response_time 10 robustness_variable 2
config igmp_snooping querier 3114 last_member_query_interval 1 state disable
create multicast_range iptv_0 from 239.195.0.0 to 239.195.0.255
create multicast_range iptv_1 from 239.195.1.0 to 239.195.1.255
create multicast_range iptv_2 from 239.195.2.0 to 239.195.2.255
create multicast_range iptv_3 from 239.195.3.0 to 239.195.3.255
create multicast_range iptv_4 from 239.195.4.0 to 239.195.4.255
create multicast_range iptv_5 from 239.195.5.0 to 239.195.5.255
create multicast_range iptv_6 from 239.195.6.0 to 239.195.6.255
config limited_multicast_addr ports 1-24 add multicast_range iptv_0
config limited_multicast_addr ports 1-24 add multicast_range iptv_1
config limited_multicast_addr ports 1-24 add multicast_range iptv_2
config limited_multicast_addr ports 1-24 add multicast_range iptv_3
config limited_multicast_addr ports 1-24 add multicast_range iptv_4
config limited_multicast_addr ports 1-24 add multicast_range iptv_5
config limited_multicast_addr ports 1-24 add multicast_range iptv_6
config limited_multicast_addr ports 1-24 access permit state enable
config limited_multicast_addr ports 25-26 access permit state disable
config igmp access_authentication ports 1-26 state disable

# LACP

config link_aggregation algorithm mac_source
config lacp_port 1-26 mode passive

# GVLAN


# IP

config ipif System vlan 3051 ipaddress 10.90.90.132/23 state enable
disable autoconfig
config ipif System dhcp_option12 state disable

# ARP

config arp_aging time 1200
config gratuitous_arp send ipif_status_up enable
config gratuitous_arp send dup_ip_detected enable
config gratuitous_arp learning enable

# LLDP

enable lldp
config lldp message_tx_interval 30
config lldp tx_delay 2
config lldp message_tx_hold_multiplier 4
config lldp reinit_delay 2
config lldp notification_interval 5
config lldp ports 1-24 notification disable
config lldp ports 1-24 admin_status disable
config lldp ports 25-26 notification enable
config lldp ports 25-26 admin_status tx_and_rx
config lldp ports 25-26 basic_tlvs port_description system_name system_description system_capabilities enable
config lldp ports 25-26 dot1_tlv_pvid enable
config lldp ports 25-26 dot1_tlv_vlan_name vlanid 1-4094 enable
config lldp ports 25-26 dot1_tlv_protocol_identity eapol enable
config lldp ports 25-26 dot1_tlv_protocol_identity lacp enable
config lldp ports 25-26 dot1_tlv_protocol_identity gvrp enable
config lldp ports 25-26 dot1_tlv_protocol_identity stp enable
config lldp ports 25-26 dot3_tlvs mac_phy_configuration_status link_aggregation maximum_frame_size enable
config lldp ports 25-26 mgt_addr ipv4 10.90.90.132 enable

# ACCESS_AUTHENTICATION_CONTROL

config authen_login default method local
config authen_enable default method local_enable
config authen application console login default
config authen application console enable default
config authen application telnet login default
config authen application telnet enable default
config authen application ssh login default
config authen application ssh enable default
config authen application http login default
config authen application http enable default
config authen parameter response_timeout 0
config authen parameter attempt 3
config authen enable_admin all state enable
config authen enable_operator all state enable
disable authen_policy

# DHCP_RELAY

config dhcp_relay hops 4 time 0
config dhcp_relay option_82 state enable
config dhcp_relay option_82 check disable
config dhcp_relay option_82 policy drop
config dhcp_relay option_82 remote_id default
config dhcp_relay option_60 state disable
config dhcp_relay option_60 default mode drop
config dhcp_relay option_61 state disable
config dhcp_relay option_61 default drop
config dhcp_relay add ipif System 10.78.77.88

# DHCP_LOCAL_RELAY


Только сейчас обратил внимание, что enable dhcp_relay вообще не сохраняется в конфиг:

Код:
des-132:admin#show config current_config include "dhcp_relay"
Command: show config current_config include "dhcp_relay"
disable dhcp_relay
config dhcp_relay hops 4 time 0
config dhcp_relay option_82 state enable
config dhcp_relay option_82 check disable
config dhcp_relay option_82 policy drop
config dhcp_relay option_82 remote_id default
config dhcp_relay option_60 state disable
config dhcp_relay option_60 default mode drop
config dhcp_relay option_61 state disable
config dhcp_relay option_61 default drop
config dhcp_relay add ipif System 10.78.77.88


des-132:admin#enable dhcp_relay
Command: enable dhcp_relay

Note: Because this action leads to create per port ACL rules, it needs some time to make this function take effect.
Success.

des-132:admin#show dhcp_relay
Command: show dhcp_relay

DHCP/BOOTP Relay Status         : Enabled
DHCP/BOOTP Hops Count Limit     : 4
DHCP/BOOTP Relay Time Threshold : 0
DHCP Relay Agent Information Option 82 State  : Enabled
DHCP Relay Agent Information Option 82 Check  : Disabled
DHCP Relay Agent Information Option 82 Policy : Drop
DHCP Relay Agent Information Option 82 Remote ID : 00-21-91-81-2C-E8

Interface     Server 1         Server 2         Server 3         Server 4
------------  ---------------  ---------------  ---------------  --------------
System        10.78.77.88

Server                   VLAN ID List
---------------          ------------------------------------

des-132:admin#show config current_config include "dhcp_relay"
Command: show config current_config include "dhcp_relay"
disable dhcp_relay
config dhcp_relay hops 4 time 0
config dhcp_relay option_82 state enable
config dhcp_relay option_82 check disable
config dhcp_relay option_82 policy drop
config dhcp_relay option_82 remote_id default
config dhcp_relay option_60 state disable
config dhcp_relay option_60 default mode drop
config dhcp_relay option_61 state disable
config dhcp_relay option_61 default drop
config dhcp_relay add ipif System 10.78.77.88


Command: show switch

Скрытый текст: показать
Код:
des-132:admin#show switch


Device Type       : DES-3526 Fast-Ethernet Switch
Combo Port Type   : 1000Base-T + 1000Base-T
MAC Address       : 00-21-91-81-2C-E8
IP Address        : 10.90.90.132 (Manual)
VLAN Name         : 3051
Subnet Mask       : 255.255.254.0
Default Gateway   : 10.90.90.1
Boot PROM Version : Build 5.00.011
Firmware Version  : Build 6.20.B09
Hardware Version  : A4
Serial Number     : PL0A1A1001388
Power Status      : Main - Normal, Redundant - Not Present
System Name       : des-132
System Location   :
System Contact    :
Spanning Tree     : Disabled
GVRP              : Disabled
IGMP Snooping     : Enabled
TELNET            : Enabled (TCP 23)
SSH               : Disabled
WEB               : Disabled
RMON              : Enabled
Clipaging         : Enabled
Asymmetric VLAN   : Disabled
DNS Resolver      : Enabled
Password Encryption Status : Enabled

des-132:admin#


Вернуться наверх
 Профиль  
 
СообщениеДобавлено: Вт апр 10, 2012 15:10 
Не в сети
Сотрудник D-LINK
Сотрудник D-LINK

Зарегистрирован: Пт янв 21, 2005 11:52
Сообщений: 11212
Откуда: D-Link, Moscow
Приведите, пожалуйста, пример вывода:
sh access_profile
во время работы DHCP Relay и когда наблюдаются проблемы.

_________________
С уважением,
Бигаров Руслан.


Вернуться наверх
 Профиль  
 
СообщениеДобавлено: Ср апр 11, 2012 15:52 
Не в сети

Зарегистрирован: Пн сен 18, 2006 11:17
Сообщений: 270
Откуда: SPb
После перезагрузки: dhcp_relay не работает (disable):
Скрытый текст: показать
Код:
 
Command: show access_profile

Access Profile Table

Access Profile ID : 1                                      Type : Packet Content
================================================================================
Owner    : DHCP_filter
Masks    :

Offset 16-31 : 0xffff0000 00000000 000000ff 00000000
Offset 32-47 : 0x00000000 0000ffff 00000000 00000000

Access ID: 1              Mode: Deny
Owner    : DHCP_filter
Port     : 1
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 2              Mode: Deny
Owner    : DHCP_filter
Port     : 2
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 3              Mode: Deny
Owner    : DHCP_filter
Port     : 3
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 4              Mode: Deny
Owner    : DHCP_filter
Port     : 4
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 5              Mode: Deny
Owner    : DHCP_filter
Port     : 5
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 6              Mode: Deny
Owner    : DHCP_filter
Port     : 6
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 7              Mode: Deny
Owner    : DHCP_filter
Port     : 7
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 8              Mode: Deny
Owner    : DHCP_filter
Port     : 8
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 9              Mode: Deny
Owner    : DHCP_filter
Port     : 9
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 10             Mode: Deny
Owner    : DHCP_filter
Port     : 10
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 11             Mode: Deny
Owner    : DHCP_filter
Port     : 11
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 12             Mode: Deny
Owner    : DHCP_filter
Port     : 12
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 13             Mode: Deny
Owner    : DHCP_filter
Port     : 13
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 14             Mode: Deny
Owner    : DHCP_filter
Port     : 14
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 15             Mode: Deny
Owner    : DHCP_filter
Port     : 15
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 16             Mode: Deny
Owner    : DHCP_filter
Port     : 16
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 17             Mode: Deny
Owner    : DHCP_filter
Port     : 17
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 18             Mode: Deny
Owner    : DHCP_filter
Port     : 18
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 19             Mode: Deny
Owner    : DHCP_filter
Port     : 19
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 20             Mode: Deny
Owner    : DHCP_filter
Port     : 20
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 21             Mode: Deny
Owner    : DHCP_filter
Port     : 21
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 22             Mode: Deny
Owner    : DHCP_filter
Port     : 22
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 23             Mode: Deny
Owner    : DHCP_filter
Port     : 23
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 24             Mode: Deny
Owner    : DHCP_filter
Port     : 24
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

================================================================================


Access Profile ID : 2                                      Type : Packet Content
================================================================================
Owner    : EX_NetBIOS_filter
Masks    :

Offset 16-31 : 0x0000ffff 00000000 00000000 00000000

Access ID: 1              Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 1
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 2              Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 2
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 3              Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 3
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 4              Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 4
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 5              Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 5
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 6              Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 6
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 7              Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 7
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 8              Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 8
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 9              Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 9
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 10             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 10
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 11             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 11
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 12             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 12
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 13             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 13
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 14             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 14
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 15             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 15
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 16             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 16
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 17             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 17
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 18             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 18
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 19             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 19
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 20             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 20
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 21             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 21
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 22             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 22
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 23             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 23
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 24             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 24
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 25             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 25
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 26             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 26
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

================================================================================


Access Profile ID : 3                                      Type : Packet Content
================================================================================
Owner    : NetBIOS_filter
Masks    :

Offset 32-47 : 0x00000000 0000ffff 00000000 00000000

Access ID: 1              Mode: Deny
Owner    : NETBIOS_filter
Port     : 1
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 2              Mode: Deny
Owner    : NETBIOS_filter
Port     : 2
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 3              Mode: Deny
Owner    : NETBIOS_filter
Port     : 3
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 4              Mode: Deny
Owner    : NETBIOS_filter
Port     : 4
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 5              Mode: Deny
Owner    : NETBIOS_filter
Port     : 5
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 6              Mode: Deny
Owner    : NETBIOS_filter
Port     : 6
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 7              Mode: Deny
Owner    : NETBIOS_filter
Port     : 7
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 8              Mode: Deny
Owner    : NETBIOS_filter
Port     : 8
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 9              Mode: Deny
Owner    : NETBIOS_filter
Port     : 9
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 10             Mode: Deny
Owner    : NETBIOS_filter
Port     : 10
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 11             Mode: Deny
Owner    : NETBIOS_filter
Port     : 11
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 12             Mode: Deny
Owner    : NETBIOS_filter
Port     : 12
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 13             Mode: Deny
Owner    : NETBIOS_filter
Port     : 13
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 14             Mode: Deny
Owner    : NETBIOS_filter
Port     : 14
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 15             Mode: Deny
Owner    : NETBIOS_filter
Port     : 15
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 16             Mode: Deny
Owner    : NETBIOS_filter
Port     : 16
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 17             Mode: Deny
Owner    : NETBIOS_filter
Port     : 17
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 18             Mode: Deny
Owner    : NETBIOS_filter
Port     : 18
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 19             Mode: Deny
Owner    : NETBIOS_filter
Port     : 19
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 20             Mode: Deny
Owner    : NETBIOS_filter
Port     : 20
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 21             Mode: Deny
Owner    : NETBIOS_filter
Port     : 21
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 22             Mode: Deny
Owner    : NETBIOS_filter
Port     : 22
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 23             Mode: Deny
Owner    : NETBIOS_filter
Port     : 23
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 24             Mode: Deny
Owner    : NETBIOS_filter
Port     : 24
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 25             Mode: Deny
Owner    : NETBIOS_filter
Port     : 25
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 26             Mode: Deny
Owner    : NETBIOS_filter
Port     : 26
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 27             Mode: Deny
Owner    : NETBIOS_filter
Port     : 1
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 28             Mode: Deny
Owner    : NETBIOS_filter
Port     : 2
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 29             Mode: Deny
Owner    : NETBIOS_filter
Port     : 3
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 30             Mode: Deny
Owner    : NETBIOS_filter
Port     : 4
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 31             Mode: Deny
Owner    : NETBIOS_filter
Port     : 5
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 32             Mode: Deny
Owner    : NETBIOS_filter
Port     : 6
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 33             Mode: Deny
Owner    : NETBIOS_filter
Port     : 7
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 34             Mode: Deny
Owner    : NETBIOS_filter
Port     : 8
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 35             Mode: Deny
Owner    : NETBIOS_filter
Port     : 9
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 36             Mode: Deny
Owner    : NETBIOS_filter
Port     : 10
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 37             Mode: Deny
Owner    : NETBIOS_filter
Port     : 11
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 38             Mode: Deny
Owner    : NETBIOS_filter
Port     : 12
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 39             Mode: Deny
Owner    : NETBIOS_filter
Port     : 13
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 40             Mode: Deny
Owner    : NETBIOS_filter
Port     : 14
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 41             Mode: Deny
Owner    : NETBIOS_filter
Port     : 15
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 42             Mode: Deny
Owner    : NETBIOS_filter
Port     : 16
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 43             Mode: Deny
Owner    : NETBIOS_filter
Port     : 17
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 44             Mode: Deny
Owner    : NETBIOS_filter
Port     : 18
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 45             Mode: Deny
Owner    : NETBIOS_filter
Port     : 19
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 46             Mode: Deny
Owner    : NETBIOS_filter
Port     : 20
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 47             Mode: Deny
Owner    : NETBIOS_filter
Port     : 21
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 48             Mode: Deny
Owner    : NETBIOS_filter
Port     : 22
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 49             Mode: Deny
Owner    : NETBIOS_filter
Port     : 23
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 50             Mode: Deny
Owner    : NETBIOS_filter
Port     : 24
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 51             Mode: Deny
Owner    : NETBIOS_filter
Port     : 25
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 52             Mode: Deny
Owner    : NETBIOS_filter
Port     : 26
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 53             Mode: Deny
Owner    : NETBIOS_filter
Port     : 1
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 54             Mode: Deny
Owner    : NETBIOS_filter
Port     : 2
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 55             Mode: Deny
Owner    : NETBIOS_filter
Port     : 3
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 56             Mode: Deny
Owner    : NETBIOS_filter
Port     : 4
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 57             Mode: Deny
Owner    : NETBIOS_filter
Port     : 5
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 58             Mode: Deny
Owner    : NETBIOS_filter
Port     : 6
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 59             Mode: Deny
Owner    : NETBIOS_filter
Port     : 7
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 60             Mode: Deny
Owner    : NETBIOS_filter
Port     : 8
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 61             Mode: Deny
Owner    : NETBIOS_filter
Port     : 9
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 62             Mode: Deny
Owner    : NETBIOS_filter
Port     : 10
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 63             Mode: Deny
Owner    : NETBIOS_filter
Port     : 11
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 64             Mode: Deny
Owner    : NETBIOS_filter
Port     : 12
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 65             Mode: Deny
Owner    : NETBIOS_filter
Port     : 13
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 66             Mode: Deny
Owner    : NETBIOS_filter
Port     : 14
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 67             Mode: Deny
Owner    : NETBIOS_filter
Port     : 15
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 68             Mode: Deny
Owner    : NETBIOS_filter
Port     : 16
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 69             Mode: Deny
Owner    : NETBIOS_filter
Port     : 17
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 70             Mode: Deny
Owner    : NETBIOS_filter
Port     : 18
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 71             Mode: Deny
Owner    : NETBIOS_filter
Port     : 19
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 72             Mode: Deny
Owner    : NETBIOS_filter
Port     : 20
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 73             Mode: Deny
Owner    : NETBIOS_filter
Port     : 21
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 74             Mode: Deny
Owner    : NETBIOS_filter
Port     : 22
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 75             Mode: Deny
Owner    : NETBIOS_filter
Port     : 23
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 76             Mode: Deny
Owner    : NETBIOS_filter
Port     : 24
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 77             Mode: Deny
Owner    : NETBIOS_filter
Port     : 25
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 78             Mode: Deny
Owner    : NETBIOS_filter
Port     : 26
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 79             Mode: Deny
Owner    : NETBIOS_filter
Port     : 1
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 80             Mode: Deny
Owner    : NETBIOS_filter
Port     : 2
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 81             Mode: Deny
Owner    : NETBIOS_filter
Port     : 3
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 82             Mode: Deny
Owner    : NETBIOS_filter
Port     : 4
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 83             Mode: Deny
Owner    : NETBIOS_filter
Port     : 5
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 84             Mode: Deny
Owner    : NETBIOS_filter
Port     : 6
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 85             Mode: Deny
Owner    : NETBIOS_filter
Port     : 7
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 86             Mode: Deny
Owner    : NETBIOS_filter
Port     : 8
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 87             Mode: Deny
Owner    : NETBIOS_filter
Port     : 9
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 88             Mode: Deny
Owner    : NETBIOS_filter
Port     : 10
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 89             Mode: Deny
Owner    : NETBIOS_filter
Port     : 11
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 90             Mode: Deny
Owner    : NETBIOS_filter
Port     : 12
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 91             Mode: Deny
Owner    : NETBIOS_filter
Port     : 13
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 92             Mode: Deny
Owner    : NETBIOS_filter
Port     : 14
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 93             Mode: Deny
Owner    : NETBIOS_filter
Port     : 15
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 94             Mode: Deny
Owner    : NETBIOS_filter
Port     : 16
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 95             Mode: Deny
Owner    : NETBIOS_filter
Port     : 17
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 96             Mode: Deny
Owner    : NETBIOS_filter
Port     : 18
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 97             Mode: Deny
Owner    : NETBIOS_filter
Port     : 19
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 98             Mode: Deny
Owner    : NETBIOS_filter
Port     : 20
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 99             Mode: Deny
Owner    : NETBIOS_filter
Port     : 21
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 100            Mode: Deny
Owner    : NETBIOS_filter
Port     : 22
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 101            Mode: Deny
Owner    : NETBIOS_filter
Port     : 23
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 102            Mode: Deny
Owner    : NETBIOS_filter
Port     : 24
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 103            Mode: Deny
Owner    : NETBIOS_filter
Port     : 25
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 104            Mode: Deny
Owner    : NETBIOS_filter
Port     : 26
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

================================================================================


Access Profile ID : 4                                      Type : Ethernet
================================================================================
Owner    : ACL
Masks    :
Destination MAC
-----------------
FF-FF-FF-FF-FF-FF

Access ID: 1              Mode: Deny
Owner    : ACL
Port     : 1
-----------------
01-00-0C-CC-CC-CD

Access ID: 2              Mode: Deny
Owner    : ACL
Port     : 2
-----------------
01-00-0C-CC-CC-CD

Access ID: 3              Mode: Deny
Owner    : ACL
Port     : 3
-----------------
01-00-0C-CC-CC-CD

Access ID: 4              Mode: Deny
Owner    : ACL
Port     : 4
-----------------
01-00-0C-CC-CC-CD

Access ID: 5              Mode: Deny
Owner    : ACL
Port     : 5
-----------------
01-00-0C-CC-CC-CD

Access ID: 6              Mode: Deny
Owner    : ACL
Port     : 6
-----------------
01-00-0C-CC-CC-CD

Access ID: 7              Mode: Deny
Owner    : ACL
Port     : 7
-----------------
01-00-0C-CC-CC-CD

Access ID: 8              Mode: Deny
Owner    : ACL
Port     : 8
-----------------
01-00-0C-CC-CC-CD

Access ID: 9              Mode: Deny
Owner    : ACL
Port     : 9
-----------------
01-00-0C-CC-CC-CD

Access ID: 10             Mode: Deny
Owner    : ACL
Port     : 10
-----------------
01-00-0C-CC-CC-CD

Access ID: 11             Mode: Deny
Owner    : ACL
Port     : 11
-----------------
01-00-0C-CC-CC-CD

Access ID: 12             Mode: Deny
Owner    : ACL
Port     : 12
-----------------
01-00-0C-CC-CC-CD

Access ID: 13             Mode: Deny
Owner    : ACL
Port     : 13
-----------------
01-00-0C-CC-CC-CD

Access ID: 14             Mode: Deny
Owner    : ACL
Port     : 14
-----------------
01-00-0C-CC-CC-CD

Access ID: 15             Mode: Deny
Owner    : ACL
Port     : 15
-----------------
01-00-0C-CC-CC-CD

Access ID: 16             Mode: Deny
Owner    : ACL
Port     : 16
-----------------
01-00-0C-CC-CC-CD

Access ID: 17             Mode: Deny
Owner    : ACL
Port     : 17
-----------------
01-00-0C-CC-CC-CD

Access ID: 18             Mode: Deny
Owner    : ACL
Port     : 18
-----------------
01-00-0C-CC-CC-CD

Access ID: 19             Mode: Deny
Owner    : ACL
Port     : 19
-----------------
01-00-0C-CC-CC-CD

Access ID: 20             Mode: Deny
Owner    : ACL
Port     : 20
-----------------
01-00-0C-CC-CC-CD

Access ID: 21             Mode: Deny
Owner    : ACL
Port     : 21
-----------------
01-00-0C-CC-CC-CD

Access ID: 22             Mode: Deny
Owner    : ACL
Port     : 22
-----------------
01-00-0C-CC-CC-CD

Access ID: 23             Mode: Deny
Owner    : ACL
Port     : 23
-----------------
01-00-0C-CC-CC-CD

Access ID: 24             Mode: Deny
Owner    : ACL
Port     : 24
-----------------
01-00-0C-CC-CC-CD

Access ID: 25             Mode: Deny
Owner    : ACL
Port     : 25
-----------------
01-00-0C-CC-CC-CD

Access ID: 26             Mode: Deny
Owner    : ACL
Port     : 26
-----------------
01-00-0C-CC-CC-CD
================================================================================


Access Profile ID : 5                                      Type : IP
================================================================================
Owner    : ACL
Masks    :
Dest. IP Addr
---------------
240.0.0.0
================================================================================


Access Profile ID : 252                                    Type : Packet Content
================================================================================
Owner    : ACL
Masks    :

Offset 16-31 : 0xffff0000 00000000 00000000 00000000
Offset 32-47 : 0xfffffff8 00000000 00000000 00000000

Access ID: 1              Mode: Permit
Owner    : ACL
Port     : 1
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c408 00000000 00000000 00000000

Access ID: 2              Mode: Permit
Owner    : ACL
Port     : 2
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c410 00000000 00000000 00000000

Access ID: 3              Mode: Permit
Owner    : ACL
Port     : 3
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c418 00000000 00000000 00000000

Access ID: 4              Mode: Permit
Owner    : ACL
Port     : 4
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c420 00000000 00000000 00000000

Access ID: 5              Mode: Permit
Owner    : ACL
Port     : 5
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c428 00000000 00000000 00000000

Access ID: 6              Mode: Permit
Owner    : ACL
Port     : 6
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c430 00000000 00000000 00000000

Access ID: 7              Mode: Permit
Owner    : ACL
Port     : 7
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c438 00000000 00000000 00000000

Access ID: 8              Mode: Permit
Owner    : ACL
Port     : 8
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c440 00000000 00000000 00000000

Access ID: 9              Mode: Permit
Owner    : ACL
Port     : 9
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c448 00000000 00000000 00000000

Access ID: 10             Mode: Permit
Owner    : ACL
Port     : 10
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c450 00000000 00000000 00000000

Access ID: 11             Mode: Permit
Owner    : ACL
Port     : 11
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c458 00000000 00000000 00000000

Access ID: 12             Mode: Permit
Owner    : ACL
Port     : 12
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c460 00000000 00000000 00000000

Access ID: 13             Mode: Permit
Owner    : ACL
Port     : 13
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c468 00000000 00000000 00000000

Access ID: 14             Mode: Permit
Owner    : ACL
Port     : 14
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c470 00000000 00000000 00000000

Access ID: 15             Mode: Permit
Owner    : ACL
Port     : 15
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c478 00000000 00000000 00000000

Access ID: 16             Mode: Permit
Owner    : ACL
Port     : 16
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c480 00000000 00000000 00000000

Access ID: 17             Mode: Permit
Owner    : ACL
Port     : 17
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c488 00000000 00000000 00000000

Access ID: 18             Mode: Permit
Owner    : ACL
Port     : 18
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c490 00000000 00000000 00000000

Access ID: 19             Mode: Permit
Owner    : ACL
Port     : 19
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c498 00000000 00000000 00000000

Access ID: 20             Mode: Permit
Owner    : ACL
Port     : 20
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c4a0 00000000 00000000 00000000

Access ID: 21             Mode: Permit
Owner    : ACL
Port     : 21
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c4a8 00000000 00000000 00000000

Access ID: 22             Mode: Permit
Owner    : ACL
Port     : 22
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c4b0 00000000 00000000 00000000

Access ID: 23             Mode: Permit
Owner    : ACL
Port     : 23
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c4b8 00000000 00000000 00000000

Access ID: 24             Mode: Permit
Owner    : ACL
Port     : 24
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c4c0 00000000 00000000 00000000

================================================================================


Access Profile ID : 253                                    Type : IP
================================================================================
Owner    : ACL
Masks    :
Source IP Addr
---------------
255.255.255.248

Access ID: 1              Mode: Permit
Owner    : ACL
Port     : 1
---------------
10.54.196.8

Access ID: 2              Mode: Permit
Owner    : ACL
Port     : 2
---------------
10.54.196.16

Access ID: 3              Mode: Permit
Owner    : ACL
Port     : 3
---------------
10.54.196.24

Access ID: 4              Mode: Permit
Owner    : ACL
Port     : 4
---------------
10.54.196.32

Access ID: 5              Mode: Permit
Owner    : ACL
Port     : 5
---------------
10.54.196.40

Access ID: 6              Mode: Permit
Owner    : ACL
Port     : 6
---------------
10.54.196.48

Access ID: 7              Mode: Permit
Owner    : ACL
Port     : 7
---------------
10.54.196.56

Access ID: 8              Mode: Permit
Owner    : ACL
Port     : 8
---------------
10.54.196.64

Access ID: 9              Mode: Permit
Owner    : ACL
Port     : 9
---------------
10.54.196.72

Access ID: 10             Mode: Permit
Owner    : ACL
Port     : 10
---------------
10.54.196.80

Access ID: 11             Mode: Permit
Owner    : ACL
Port     : 11
---------------
10.54.196.88

Access ID: 12             Mode: Permit
Owner    : ACL
Port     : 12
---------------
10.54.196.96

Access ID: 13             Mode: Permit
Owner    : ACL
Port     : 13
---------------
10.54.196.104

Access ID: 14             Mode: Permit
Owner    : ACL
Port     : 14
---------------
10.54.196.112

Access ID: 15             Mode: Permit
Owner    : ACL
Port     : 15
---------------
10.54.196.120

Access ID: 16             Mode: Permit
Owner    : ACL
Port     : 16
---------------
10.54.196.128

Access ID: 17             Mode: Permit
Owner    : ACL
Port     : 17
---------------
10.54.196.136

Access ID: 18             Mode: Permit
Owner    : ACL
Port     : 18
---------------
10.54.196.144

Access ID: 19             Mode: Permit
Owner    : ACL
Port     : 19
---------------
10.54.196.152

Access ID: 20             Mode: Permit
Owner    : ACL
Port     : 20
---------------
10.54.196.160

Access ID: 21             Mode: Permit
Owner    : ACL
Port     : 21
---------------
10.54.196.168

Access ID: 22             Mode: Permit
Owner    : ACL
Port     : 22
---------------
10.54.196.176

Access ID: 23             Mode: Permit
Owner    : ACL
Port     : 23
---------------
10.54.196.184

Access ID: 24             Mode: Permit
Owner    : ACL
Port     : 24
---------------
10.54.196.192
================================================================================


Access Profile ID : 254                                    Type : Packet Content
================================================================================
Owner    : ACL
Masks    :

Offset 16-31 : 0xffff0000 00000000 00000000 00000000

Access ID: 1              Mode: Deny
Owner    : ACL
Port     : 1
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 2              Mode: Deny
Owner    : ACL
Port     : 2
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 3              Mode: Deny
Owner    : ACL
Port     : 3
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 4              Mode: Deny
Owner    : ACL
Port     : 4
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 5              Mode: Deny
Owner    : ACL
Port     : 5
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 6              Mode: Deny
Owner    : ACL
Port     : 6
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 7              Mode: Deny
Owner    : ACL
Port     : 7
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 8              Mode: Deny
Owner    : ACL
Port     : 8
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 9              Mode: Deny
Owner    : ACL
Port     : 9
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 10             Mode: Deny
Owner    : ACL
Port     : 10
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 11             Mode: Deny
Owner    : ACL
Port     : 11
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 12             Mode: Deny
Owner    : ACL
Port     : 12
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 13             Mode: Deny
Owner    : ACL
Port     : 13
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 14             Mode: Deny
Owner    : ACL
Port     : 14
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 15             Mode: Deny
Owner    : ACL
Port     : 15
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 16             Mode: Deny
Owner    : ACL
Port     : 16
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 17             Mode: Deny
Owner    : ACL
Port     : 17
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 18             Mode: Deny
Owner    : ACL
Port     : 18
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 19             Mode: Deny
Owner    : ACL
Port     : 19
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 20             Mode: Deny
Owner    : ACL
Port     : 20
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 21             Mode: Deny
Owner    : ACL
Port     : 21
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 22             Mode: Deny
Owner    : ACL
Port     : 22
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 23             Mode: Deny
Owner    : ACL
Port     : 23
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 24             Mode: Deny
Owner    : ACL
Port     : 24
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

================================================================================


Access Profile ID : 255                                    Type : IP
================================================================================
Owner    : ACL
Masks    :
Source IP Addr
---------------
0.0.0.0

Access ID: 1              Mode: Deny
Owner    : ACL
Port     : 1
---------------
0.0.0.0

Access ID: 2              Mode: Deny
Owner    : ACL
Port     : 2
---------------
0.0.0.0

Access ID: 3              Mode: Deny
Owner    : ACL
Port     : 3
---------------
0.0.0.0

Access ID: 4              Mode: Deny
Owner    : ACL
Port     : 4
---------------
0.0.0.0

Access ID: 5              Mode: Deny
Owner    : ACL
Port     : 5
---------------
0.0.0.0

Access ID: 6              Mode: Deny
Owner    : ACL
Port     : 6
---------------
0.0.0.0

Access ID: 7              Mode: Deny
Owner    : ACL
Port     : 7
---------------
0.0.0.0

Access ID: 8              Mode: Deny
Owner    : ACL
Port     : 8
---------------
0.0.0.0

Access ID: 9              Mode: Deny
Owner    : ACL
Port     : 9
---------------
0.0.0.0

Access ID: 10             Mode: Deny
Owner    : ACL
Port     : 10
---------------
0.0.0.0

Access ID: 11             Mode: Deny
Owner    : ACL
Port     : 11
---------------
0.0.0.0

Access ID: 12             Mode: Deny
Owner    : ACL
Port     : 12
---------------
0.0.0.0

Access ID: 13             Mode: Deny
Owner    : ACL
Port     : 13
---------------
0.0.0.0

Access ID: 14             Mode: Deny
Owner    : ACL
Port     : 14
---------------
0.0.0.0

Access ID: 15             Mode: Deny
Owner    : ACL
Port     : 15
---------------
0.0.0.0

Access ID: 16             Mode: Deny
Owner    : ACL
Port     : 16
---------------
0.0.0.0

Access ID: 17             Mode: Deny
Owner    : ACL
Port     : 17
---------------
0.0.0.0

Access ID: 18             Mode: Deny
Owner    : ACL
Port     : 18
---------------
0.0.0.0

Access ID: 19             Mode: Deny
Owner    : ACL
Port     : 19
---------------
0.0.0.0

Access ID: 20             Mode: Deny
Owner    : ACL
Port     : 20
---------------
0.0.0.0

Access ID: 21             Mode: Deny
Owner    : ACL
Port     : 21
---------------
0.0.0.0

Access ID: 22             Mode: Deny
Owner    : ACL
Port     : 22
---------------
0.0.0.0

Access ID: 23             Mode: Deny
Owner    : ACL
Port     : 23
---------------
0.0.0.0

Access ID: 24             Mode: Deny
Owner    : ACL
Port     : 24
---------------
0.0.0.0
================================================================================

ACL Free: System : 524, Port 1-8  : 112, Port 9-16 : 112, Port 17-24: 112
         Port 25 : 94 , Port 26   : 94
Total Access Entries : 276


После включения dhcp_relay:
продолжение в следующем сообщении (в это не влезло)


Вернуться наверх
 Профиль  
 
СообщениеДобавлено: Ср апр 11, 2012 15:53 
Не в сети

Зарегистрирован: Пн сен 18, 2006 11:17
Сообщений: 270
Откуда: SPb
После включения dhcp_relay:
Скрытый текст: показать
Код:
des-132:admin#enable dhcp_relay
Command: enable dhcp_relay

Note: Because this action leads to create per port ACL rules, it needs some time to make this function take effect.
Success.

des-132:admin#show access_profile
Command: show access_profile

Access Profile Table

Access Profile ID : 1                                      Type : Packet Content
================================================================================
Owner    : DHCP_filter
Masks    :

Offset 16-31 : 0xffff0000 00000000 000000ff 00000000
Offset 32-47 : 0x00000000 0000ffff 00000000 00000000

Access ID: 1              Mode: Deny
Owner    : DHCP_filter
Port     : 1
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 2              Mode: Deny
Owner    : DHCP_filter
Port     : 2
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 3              Mode: Deny
Owner    : DHCP_filter
Port     : 3
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 4              Mode: Deny
Owner    : DHCP_filter
Port     : 4
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 5              Mode: Deny
Owner    : DHCP_filter
Port     : 5
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 6              Mode: Deny
Owner    : DHCP_filter
Port     : 6
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 7              Mode: Deny
Owner    : DHCP_filter
Port     : 7
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 8              Mode: Deny
Owner    : DHCP_filter
Port     : 8
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 9              Mode: Deny
Owner    : DHCP_filter
Port     : 9
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 10             Mode: Deny
Owner    : DHCP_filter
Port     : 10
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 11             Mode: Deny
Owner    : DHCP_filter
Port     : 11
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 12             Mode: Deny
Owner    : DHCP_filter
Port     : 12
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 13             Mode: Deny
Owner    : DHCP_filter
Port     : 13
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 14             Mode: Deny
Owner    : DHCP_filter
Port     : 14
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 15             Mode: Deny
Owner    : DHCP_filter
Port     : 15
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 16             Mode: Deny
Owner    : DHCP_filter
Port     : 16
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 17             Mode: Deny
Owner    : DHCP_filter
Port     : 17
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 18             Mode: Deny
Owner    : DHCP_filter
Port     : 18
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 19             Mode: Deny
Owner    : DHCP_filter
Port     : 19
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 20             Mode: Deny
Owner    : DHCP_filter
Port     : 20
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 21             Mode: Deny
Owner    : DHCP_filter
Port     : 21
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 22             Mode: Deny
Owner    : DHCP_filter
Port     : 22
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 23             Mode: Deny
Owner    : DHCP_filter
Port     : 23
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

Access ID: 24             Mode: Deny
Owner    : DHCP_filter
Port     : 24
----------------------------------------------------
Offset 16-31 : 0x08000000 00000000 00000011 00000000
Offset 32-47 : 0x00000000 00000043 00000000 00000000

================================================================================


Access Profile ID : 2                                      Type : Packet Content
================================================================================
Owner    : EX_NetBIOS_filter
Masks    :

Offset 16-31 : 0x0000ffff 00000000 00000000 00000000

Access ID: 1              Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 1
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 2              Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 2
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 3              Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 3
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 4              Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 4
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 5              Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 5
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 6              Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 6
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 7              Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 7
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 8              Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 8
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 9              Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 9
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 10             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 10
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 11             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 11
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 12             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 12
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 13             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 13
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 14             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 14
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 15             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 15
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 16             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 16
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 17             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 17
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 18             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 18
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 19             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 19
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 20             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 20
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 21             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 21
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 22             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 22
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 23             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 23
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 24             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 24
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 25             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 25
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

Access ID: 26             Mode: Deny
Owner    : EX_NETBIOS_filter
Port     : 26
----------------------------------------------------
Offset 16-31 : 0x0000f0f0 00000000 00000000 00000000

================================================================================


Access Profile ID : 3                                      Type : Packet Content
================================================================================
Owner    : NetBIOS_filter
Masks    :

Offset 32-47 : 0x00000000 0000ffff 00000000 00000000

Access ID: 1              Mode: Deny
Owner    : NETBIOS_filter
Port     : 1
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 2              Mode: Deny
Owner    : NETBIOS_filter
Port     : 2
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 3              Mode: Deny
Owner    : NETBIOS_filter
Port     : 3
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 4              Mode: Deny
Owner    : NETBIOS_filter
Port     : 4
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 5              Mode: Deny
Owner    : NETBIOS_filter
Port     : 5
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 6              Mode: Deny
Owner    : NETBIOS_filter
Port     : 6
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 7              Mode: Deny
Owner    : NETBIOS_filter
Port     : 7
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 8              Mode: Deny
Owner    : NETBIOS_filter
Port     : 8
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 9              Mode: Deny
Owner    : NETBIOS_filter
Port     : 9
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 10             Mode: Deny
Owner    : NETBIOS_filter
Port     : 10
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 11             Mode: Deny
Owner    : NETBIOS_filter
Port     : 11
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 12             Mode: Deny
Owner    : NETBIOS_filter
Port     : 12
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 13             Mode: Deny
Owner    : NETBIOS_filter
Port     : 13
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 14             Mode: Deny
Owner    : NETBIOS_filter
Port     : 14
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 15             Mode: Deny
Owner    : NETBIOS_filter
Port     : 15
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 16             Mode: Deny
Owner    : NETBIOS_filter
Port     : 16
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 17             Mode: Deny
Owner    : NETBIOS_filter
Port     : 17
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 18             Mode: Deny
Owner    : NETBIOS_filter
Port     : 18
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 19             Mode: Deny
Owner    : NETBIOS_filter
Port     : 19
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 20             Mode: Deny
Owner    : NETBIOS_filter
Port     : 20
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 21             Mode: Deny
Owner    : NETBIOS_filter
Port     : 21
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 22             Mode: Deny
Owner    : NETBIOS_filter
Port     : 22
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 23             Mode: Deny
Owner    : NETBIOS_filter
Port     : 23
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 24             Mode: Deny
Owner    : NETBIOS_filter
Port     : 24
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 25             Mode: Deny
Owner    : NETBIOS_filter
Port     : 25
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 26             Mode: Deny
Owner    : NETBIOS_filter
Port     : 26
----------------------------------------------------
Offset 32-47 : 0x00000000 00000089 00000000 00000000

Access ID: 27             Mode: Deny
Owner    : NETBIOS_filter
Port     : 1
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 28             Mode: Deny
Owner    : NETBIOS_filter
Port     : 2
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 29             Mode: Deny
Owner    : NETBIOS_filter
Port     : 3
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 30             Mode: Deny
Owner    : NETBIOS_filter
Port     : 4
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 31             Mode: Deny
Owner    : NETBIOS_filter
Port     : 5
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 32             Mode: Deny
Owner    : NETBIOS_filter
Port     : 6
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 33             Mode: Deny
Owner    : NETBIOS_filter
Port     : 7
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 34             Mode: Deny
Owner    : NETBIOS_filter
Port     : 8
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 35             Mode: Deny
Owner    : NETBIOS_filter
Port     : 9
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 36             Mode: Deny
Owner    : NETBIOS_filter
Port     : 10
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 37             Mode: Deny
Owner    : NETBIOS_filter
Port     : 11
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 38             Mode: Deny
Owner    : NETBIOS_filter
Port     : 12
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 39             Mode: Deny
Owner    : NETBIOS_filter
Port     : 13
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 40             Mode: Deny
Owner    : NETBIOS_filter
Port     : 14
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 41             Mode: Deny
Owner    : NETBIOS_filter
Port     : 15
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 42             Mode: Deny
Owner    : NETBIOS_filter
Port     : 16
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 43             Mode: Deny
Owner    : NETBIOS_filter
Port     : 17
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 44             Mode: Deny
Owner    : NETBIOS_filter
Port     : 18
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 45             Mode: Deny
Owner    : NETBIOS_filter
Port     : 19
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 46             Mode: Deny
Owner    : NETBIOS_filter
Port     : 20
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 47             Mode: Deny
Owner    : NETBIOS_filter
Port     : 21
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 48             Mode: Deny
Owner    : NETBIOS_filter
Port     : 22
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 49             Mode: Deny
Owner    : NETBIOS_filter
Port     : 23
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 50             Mode: Deny
Owner    : NETBIOS_filter
Port     : 24
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 51             Mode: Deny
Owner    : NETBIOS_filter
Port     : 25
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 52             Mode: Deny
Owner    : NETBIOS_filter
Port     : 26
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008a 00000000 00000000

Access ID: 53             Mode: Deny
Owner    : NETBIOS_filter
Port     : 1
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 54             Mode: Deny
Owner    : NETBIOS_filter
Port     : 2
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 55             Mode: Deny
Owner    : NETBIOS_filter
Port     : 3
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 56             Mode: Deny
Owner    : NETBIOS_filter
Port     : 4
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 57             Mode: Deny
Owner    : NETBIOS_filter
Port     : 5
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 58             Mode: Deny
Owner    : NETBIOS_filter
Port     : 6
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 59             Mode: Deny
Owner    : NETBIOS_filter
Port     : 7
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 60             Mode: Deny
Owner    : NETBIOS_filter
Port     : 8
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 61             Mode: Deny
Owner    : NETBIOS_filter
Port     : 9
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 62             Mode: Deny
Owner    : NETBIOS_filter
Port     : 10
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 63             Mode: Deny
Owner    : NETBIOS_filter
Port     : 11
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 64             Mode: Deny
Owner    : NETBIOS_filter
Port     : 12
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 65             Mode: Deny
Owner    : NETBIOS_filter
Port     : 13
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 66             Mode: Deny
Owner    : NETBIOS_filter
Port     : 14
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 67             Mode: Deny
Owner    : NETBIOS_filter
Port     : 15
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 68             Mode: Deny
Owner    : NETBIOS_filter
Port     : 16
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 69             Mode: Deny
Owner    : NETBIOS_filter
Port     : 17
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 70             Mode: Deny
Owner    : NETBIOS_filter
Port     : 18
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 71             Mode: Deny
Owner    : NETBIOS_filter
Port     : 19
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 72             Mode: Deny
Owner    : NETBIOS_filter
Port     : 20
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 73             Mode: Deny
Owner    : NETBIOS_filter
Port     : 21
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 74             Mode: Deny
Owner    : NETBIOS_filter
Port     : 22
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 75             Mode: Deny
Owner    : NETBIOS_filter
Port     : 23
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 76             Mode: Deny
Owner    : NETBIOS_filter
Port     : 24
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 77             Mode: Deny
Owner    : NETBIOS_filter
Port     : 25
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 78             Mode: Deny
Owner    : NETBIOS_filter
Port     : 26
----------------------------------------------------
Offset 32-47 : 0x00000000 0000008b 00000000 00000000

Access ID: 79             Mode: Deny
Owner    : NETBIOS_filter
Port     : 1
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 80             Mode: Deny
Owner    : NETBIOS_filter
Port     : 2
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 81             Mode: Deny
Owner    : NETBIOS_filter
Port     : 3
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 82             Mode: Deny
Owner    : NETBIOS_filter
Port     : 4
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 83             Mode: Deny
Owner    : NETBIOS_filter
Port     : 5
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 84             Mode: Deny
Owner    : NETBIOS_filter
Port     : 6
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 85             Mode: Deny
Owner    : NETBIOS_filter
Port     : 7
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 86             Mode: Deny
Owner    : NETBIOS_filter
Port     : 8
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 87             Mode: Deny
Owner    : NETBIOS_filter
Port     : 9
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 88             Mode: Deny
Owner    : NETBIOS_filter
Port     : 10
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 89             Mode: Deny
Owner    : NETBIOS_filter
Port     : 11
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 90             Mode: Deny
Owner    : NETBIOS_filter
Port     : 12
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 91             Mode: Deny
Owner    : NETBIOS_filter
Port     : 13
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 92             Mode: Deny
Owner    : NETBIOS_filter
Port     : 14
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 93             Mode: Deny
Owner    : NETBIOS_filter
Port     : 15
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 94             Mode: Deny
Owner    : NETBIOS_filter
Port     : 16
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 95             Mode: Deny
Owner    : NETBIOS_filter
Port     : 17
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 96             Mode: Deny
Owner    : NETBIOS_filter
Port     : 18
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 97             Mode: Deny
Owner    : NETBIOS_filter
Port     : 19
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 98             Mode: Deny
Owner    : NETBIOS_filter
Port     : 20
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 99             Mode: Deny
Owner    : NETBIOS_filter
Port     : 21
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 100            Mode: Deny
Owner    : NETBIOS_filter
Port     : 22
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 101            Mode: Deny
Owner    : NETBIOS_filter
Port     : 23
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 102            Mode: Deny
Owner    : NETBIOS_filter
Port     : 24
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 103            Mode: Deny
Owner    : NETBIOS_filter
Port     : 25
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

Access ID: 104            Mode: Deny
Owner    : NETBIOS_filter
Port     : 26
----------------------------------------------------
Offset 32-47 : 0x00000000 000001bd 00000000 00000000

================================================================================


Access Profile ID : 4                                      Type : Ethernet
================================================================================
Owner    : ACL
Masks    :
Destination MAC
-----------------
FF-FF-FF-FF-FF-FF

Access ID: 1              Mode: Deny
Owner    : ACL
Port     : 1
-----------------
01-00-0C-CC-CC-CD

Access ID: 2              Mode: Deny
Owner    : ACL
Port     : 2
-----------------
01-00-0C-CC-CC-CD

Access ID: 3              Mode: Deny
Owner    : ACL
Port     : 3
-----------------
01-00-0C-CC-CC-CD

Access ID: 4              Mode: Deny
Owner    : ACL
Port     : 4
-----------------
01-00-0C-CC-CC-CD

Access ID: 5              Mode: Deny
Owner    : ACL
Port     : 5
-----------------
01-00-0C-CC-CC-CD

Access ID: 6              Mode: Deny
Owner    : ACL
Port     : 6
-----------------
01-00-0C-CC-CC-CD

Access ID: 7              Mode: Deny
Owner    : ACL
Port     : 7
-----------------
01-00-0C-CC-CC-CD

Access ID: 8              Mode: Deny
Owner    : ACL
Port     : 8
-----------------
01-00-0C-CC-CC-CD

Access ID: 9              Mode: Deny
Owner    : ACL
Port     : 9
-----------------
01-00-0C-CC-CC-CD

Access ID: 10             Mode: Deny
Owner    : ACL
Port     : 10
-----------------
01-00-0C-CC-CC-CD

Access ID: 11             Mode: Deny
Owner    : ACL
Port     : 11
-----------------
01-00-0C-CC-CC-CD

Access ID: 12             Mode: Deny
Owner    : ACL
Port     : 12
-----------------
01-00-0C-CC-CC-CD

Access ID: 13             Mode: Deny
Owner    : ACL
Port     : 13
-----------------
01-00-0C-CC-CC-CD

Access ID: 14             Mode: Deny
Owner    : ACL
Port     : 14
-----------------
01-00-0C-CC-CC-CD

Access ID: 15             Mode: Deny
Owner    : ACL
Port     : 15
-----------------
01-00-0C-CC-CC-CD

Access ID: 16             Mode: Deny
Owner    : ACL
Port     : 16
-----------------
01-00-0C-CC-CC-CD

Access ID: 17             Mode: Deny
Owner    : ACL
Port     : 17
-----------------
01-00-0C-CC-CC-CD

Access ID: 18             Mode: Deny
Owner    : ACL
Port     : 18
-----------------
01-00-0C-CC-CC-CD

Access ID: 19             Mode: Deny
Owner    : ACL
Port     : 19
-----------------
01-00-0C-CC-CC-CD

Access ID: 20             Mode: Deny
Owner    : ACL
Port     : 20
-----------------
01-00-0C-CC-CC-CD

Access ID: 21             Mode: Deny
Owner    : ACL
Port     : 21
-----------------
01-00-0C-CC-CC-CD

Access ID: 22             Mode: Deny
Owner    : ACL
Port     : 22
-----------------
01-00-0C-CC-CC-CD

Access ID: 23             Mode: Deny
Owner    : ACL
Port     : 23
-----------------
01-00-0C-CC-CC-CD

Access ID: 24             Mode: Deny
Owner    : ACL
Port     : 24
-----------------
01-00-0C-CC-CC-CD

Access ID: 25             Mode: Deny
Owner    : ACL
Port     : 25
-----------------
01-00-0C-CC-CC-CD

Access ID: 26             Mode: Deny
Owner    : ACL
Port     : 26
-----------------
01-00-0C-CC-CC-CD
================================================================================


Access Profile ID : 5                                      Type : IP
================================================================================
Owner    : ACL
Masks    :
Dest. IP Addr
---------------
240.0.0.0
================================================================================


Access Profile ID : 252                                    Type : Packet Content
================================================================================
Owner    : ACL
Masks    :

Offset 16-31 : 0xffff0000 00000000 00000000 00000000
Offset 32-47 : 0xfffffff8 00000000 00000000 00000000

Access ID: 1              Mode: Permit
Owner    : ACL
Port     : 1
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c408 00000000 00000000 00000000

Access ID: 2              Mode: Permit
Owner    : ACL
Port     : 2
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c410 00000000 00000000 00000000

Access ID: 3              Mode: Permit
Owner    : ACL
Port     : 3
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c418 00000000 00000000 00000000

Access ID: 4              Mode: Permit
Owner    : ACL
Port     : 4
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c420 00000000 00000000 00000000

Access ID: 5              Mode: Permit
Owner    : ACL
Port     : 5
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c428 00000000 00000000 00000000

Access ID: 6              Mode: Permit
Owner    : ACL
Port     : 6
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c430 00000000 00000000 00000000

Access ID: 7              Mode: Permit
Owner    : ACL
Port     : 7
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c438 00000000 00000000 00000000

Access ID: 8              Mode: Permit
Owner    : ACL
Port     : 8
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c440 00000000 00000000 00000000

Access ID: 9              Mode: Permit
Owner    : ACL
Port     : 9
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c448 00000000 00000000 00000000

Access ID: 10             Mode: Permit
Owner    : ACL
Port     : 10
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c450 00000000 00000000 00000000

Access ID: 11             Mode: Permit
Owner    : ACL
Port     : 11
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c458 00000000 00000000 00000000

Access ID: 12             Mode: Permit
Owner    : ACL
Port     : 12
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c460 00000000 00000000 00000000

Access ID: 13             Mode: Permit
Owner    : ACL
Port     : 13
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c468 00000000 00000000 00000000

Access ID: 14             Mode: Permit
Owner    : ACL
Port     : 14
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c470 00000000 00000000 00000000

Access ID: 15             Mode: Permit
Owner    : ACL
Port     : 15
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c478 00000000 00000000 00000000

Access ID: 16             Mode: Permit
Owner    : ACL
Port     : 16
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c480 00000000 00000000 00000000

Access ID: 17             Mode: Permit
Owner    : ACL
Port     : 17
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c488 00000000 00000000 00000000

Access ID: 18             Mode: Permit
Owner    : ACL
Port     : 18
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c490 00000000 00000000 00000000

Access ID: 19             Mode: Permit
Owner    : ACL
Port     : 19
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c498 00000000 00000000 00000000

Access ID: 20             Mode: Permit
Owner    : ACL
Port     : 20
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c4a0 00000000 00000000 00000000

Access ID: 21             Mode: Permit
Owner    : ACL
Port     : 21
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c4a8 00000000 00000000 00000000

Access ID: 22             Mode: Permit
Owner    : ACL
Port     : 22
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c4b0 00000000 00000000 00000000

Access ID: 23             Mode: Permit
Owner    : ACL
Port     : 23
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c4b8 00000000 00000000 00000000

Access ID: 24             Mode: Permit
Owner    : ACL
Port     : 24
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000
Offset 32-47 : 0x0a36c4c0 00000000 00000000 00000000

================================================================================


Access Profile ID : 253                                    Type : IP
================================================================================
Owner    : ACL
Masks    :
Source IP Addr
---------------
255.255.255.248

Access ID: 1              Mode: Permit
Owner    : ACL
Port     : 1
---------------
10.54.196.8

Access ID: 2              Mode: Permit
Owner    : ACL
Port     : 2
---------------
10.54.196.16

Access ID: 3              Mode: Permit
Owner    : ACL
Port     : 3
---------------
10.54.196.24

Access ID: 4              Mode: Permit
Owner    : ACL
Port     : 4
---------------
10.54.196.32

Access ID: 5              Mode: Permit
Owner    : ACL
Port     : 5
---------------
10.54.196.40

Access ID: 6              Mode: Permit
Owner    : ACL
Port     : 6
---------------
10.54.196.48

Access ID: 7              Mode: Permit
Owner    : ACL
Port     : 7
---------------
10.54.196.56

Access ID: 8              Mode: Permit
Owner    : ACL
Port     : 8
---------------
10.54.196.64

Access ID: 9              Mode: Permit
Owner    : ACL
Port     : 9
---------------
10.54.196.72

Access ID: 10             Mode: Permit
Owner    : ACL
Port     : 10
---------------
10.54.196.80

Access ID: 11             Mode: Permit
Owner    : ACL
Port     : 11
---------------
10.54.196.88

Access ID: 12             Mode: Permit
Owner    : ACL
Port     : 12
---------------
10.54.196.96

Access ID: 13             Mode: Permit
Owner    : ACL
Port     : 13
---------------
10.54.196.104

Access ID: 14             Mode: Permit
Owner    : ACL
Port     : 14
---------------
10.54.196.112

Access ID: 15             Mode: Permit
Owner    : ACL
Port     : 15
---------------
10.54.196.120

Access ID: 16             Mode: Permit
Owner    : ACL
Port     : 16
---------------
10.54.196.128

Access ID: 17             Mode: Permit
Owner    : ACL
Port     : 17
---------------
10.54.196.136

Access ID: 18             Mode: Permit
Owner    : ACL
Port     : 18
---------------
10.54.196.144

Access ID: 19             Mode: Permit
Owner    : ACL
Port     : 19
---------------
10.54.196.152

Access ID: 20             Mode: Permit
Owner    : ACL
Port     : 20
---------------
10.54.196.160

Access ID: 21             Mode: Permit
Owner    : ACL
Port     : 21
---------------
10.54.196.168

Access ID: 22             Mode: Permit
Owner    : ACL
Port     : 22
---------------
10.54.196.176

Access ID: 23             Mode: Permit
Owner    : ACL
Port     : 23
---------------
10.54.196.184

Access ID: 24             Mode: Permit
Owner    : ACL
Port     : 24
---------------
10.54.196.192
================================================================================


Access Profile ID : 254                                    Type : Packet Content
================================================================================
Owner    : ACL
Masks    :

Offset 16-31 : 0xffff0000 00000000 00000000 00000000

Access ID: 1              Mode: Deny
Owner    : ACL
Port     : 1
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 2              Mode: Deny
Owner    : ACL
Port     : 2
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 3              Mode: Deny
Owner    : ACL
Port     : 3
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 4              Mode: Deny
Owner    : ACL
Port     : 4
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 5              Mode: Deny
Owner    : ACL
Port     : 5
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 6              Mode: Deny
Owner    : ACL
Port     : 6
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 7              Mode: Deny
Owner    : ACL
Port     : 7
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 8              Mode: Deny
Owner    : ACL
Port     : 8
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 9              Mode: Deny
Owner    : ACL
Port     : 9
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 10             Mode: Deny
Owner    : ACL
Port     : 10
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 11             Mode: Deny
Owner    : ACL
Port     : 11
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 12             Mode: Deny
Owner    : ACL
Port     : 12
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 13             Mode: Deny
Owner    : ACL
Port     : 13
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 14             Mode: Deny
Owner    : ACL
Port     : 14
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 15             Mode: Deny
Owner    : ACL
Port     : 15
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 16             Mode: Deny
Owner    : ACL
Port     : 16
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 17             Mode: Deny
Owner    : ACL
Port     : 17
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 18             Mode: Deny
Owner    : ACL
Port     : 18
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 19             Mode: Deny
Owner    : ACL
Port     : 19
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 20             Mode: Deny
Owner    : ACL
Port     : 20
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 21             Mode: Deny
Owner    : ACL
Port     : 21
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 22             Mode: Deny
Owner    : ACL
Port     : 22
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 23             Mode: Deny
Owner    : ACL
Port     : 23
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

Access ID: 24             Mode: Deny
Owner    : ACL
Port     : 24
----------------------------------------------------
Offset 16-31 : 0x08060000 00000000 00000000 00000000

================================================================================


Access Profile ID : 255                                    Type : IP
================================================================================
Owner    : ACL
Masks    :
Source IP Addr
---------------
0.0.0.0

Access ID: 1              Mode: Deny
Owner    : ACL
Port     : 1
---------------
0.0.0.0

Access ID: 2              Mode: Deny
Owner    : ACL
Port     : 2
---------------
0.0.0.0

Access ID: 3              Mode: Deny
Owner    : ACL
Port     : 3
---------------
0.0.0.0

Access ID: 4              Mode: Deny
Owner    : ACL
Port     : 4
---------------
0.0.0.0

Access ID: 5              Mode: Deny
Owner    : ACL
Port     : 5
---------------
0.0.0.0

Access ID: 6              Mode: Deny
Owner    : ACL
Port     : 6
---------------
0.0.0.0

Access ID: 7              Mode: Deny
Owner    : ACL
Port     : 7
---------------
0.0.0.0

Access ID: 8              Mode: Deny
Owner    : ACL
Port     : 8
---------------
0.0.0.0

Access ID: 9              Mode: Deny
Owner    : ACL
Port     : 9
---------------
0.0.0.0

Access ID: 10             Mode: Deny
Owner    : ACL
Port     : 10
---------------
0.0.0.0

Access ID: 11             Mode: Deny
Owner    : ACL
Port     : 11
---------------
0.0.0.0

Access ID: 12             Mode: Deny
Owner    : ACL
Port     : 12
---------------
0.0.0.0

Access ID: 13             Mode: Deny
Owner    : ACL
Port     : 13
---------------
0.0.0.0

Access ID: 14             Mode: Deny
Owner    : ACL
Port     : 14
---------------
0.0.0.0

Access ID: 15             Mode: Deny
Owner    : ACL
Port     : 15
---------------
0.0.0.0

Access ID: 16             Mode: Deny
Owner    : ACL
Port     : 16
---------------
0.0.0.0

Access ID: 17             Mode: Deny
Owner    : ACL
Port     : 17
---------------
0.0.0.0

Access ID: 18             Mode: Deny
Owner    : ACL
Port     : 18
---------------
0.0.0.0

Access ID: 19             Mode: Deny
Owner    : ACL
Port     : 19
---------------
0.0.0.0

Access ID: 20             Mode: Deny
Owner    : ACL
Port     : 20
---------------
0.0.0.0

Access ID: 21             Mode: Deny
Owner    : ACL
Port     : 21
---------------
0.0.0.0

Access ID: 22             Mode: Deny
Owner    : ACL
Port     : 22
---------------
0.0.0.0

Access ID: 23             Mode: Deny
Owner    : ACL
Port     : 23
---------------
0.0.0.0

Access ID: 24             Mode: Deny
Owner    : ACL
Port     : 24
---------------
0.0.0.0
================================================================================

ACL Free: System : 524, Port 1-8  : 112, Port 9-16 : 112, Port 17-24: 112
         Port 25 : 94 , Port 26   : 94
Total Access Entries : 276


Кстати, только теперь вспомнил, что помимо свежих прошивок, мы ещё добавляли всякие фильтрации мультикастов - возможно, это играет роль.


Вернуться наверх
 Профиль  
 
СообщениеДобавлено: Ср апр 11, 2012 16:21 
Не в сети
Сотрудник D-LINK
Сотрудник D-LINK

Зарегистрирован: Пт янв 21, 2005 11:52
Сообщений: 11212
Откуда: D-Link, Moscow
Всё правильно, у Вас задействовано 9 профилей и DHCP Relay не хватает. Я бы Вам советовал убрать ACL EX_NETBIOS_filter, он избыточен. Что касаемо Multicast-а, то от стримера через PIM маршрутизатор и далее через ISM он должен идти приоритезированным, а join-ы и member ship report-ы от клиента DES-3526 и так приоритезирует, поэтому Multicast профиль тоже избыточен, лучше настроить Limited Multicast Ranges и Router Ports Forbiden на клиентских портах для повышения безопасности.

_________________
С уважением,
Бигаров Руслан.


Вернуться наверх
 Профиль  
 
СообщениеДобавлено: Ср апр 11, 2012 16:25 
Не в сети

Зарегистрирован: Пн сен 18, 2006 11:17
Сообщений: 270
Откуда: SPb
А, вот, кстати, и причину нашёл. Ваша мысль про access_profile была верна. Стоило отключить для примера filter netbios all, как смогли создаться dhcp_relay'ные ACL после выполнения команды "enable dhcp_relay". При этом самому netbios filter места уже не нашлось:

netbios filter включен, dhcp_relay выключен:
Код:
ACL Free: System : 524, Port 1-8  : 112, Port 9-16 : 112, Port 17-24: 112
         Port 25 : 94 , Port 26   : 94
Total Access Entries : 276


netbios filter выключен, dhcp_relay выключен:
Код:
ACL Free: System : 628, Port 1-8  : 144, Port 9-16 : 144, Port 17-24: 144
         Port 25 : 98 , Port 26   : 98
Total Access Entries : 172


netbios filter выключен, dhcp_relay включен:
Код:
ACL Free: System : 602, Port 1-8  : 136, Port 9-16 : 136, Port 17-24: 136
         Port 25 : 97 , Port 26   : 97
Total Access Entries : 198


Попытка включить netbios filter после включения dhcp_relay:
Код:
des-132:admin#config filter netbios all state enable
Command: config filter netbios all state enable

Warning ! The switch does not have enough access profiles.
Fail!


Ну и вопрос - это всё, тупик? Почему с таким количеством вроде как свободных ACL нельзя создать новый профиль ACL и правила в нём?


Вернуться наверх
 Профиль  
 
СообщениеДобавлено: Ср апр 11, 2012 16:34 
Не в сети
Сотрудник D-LINK
Сотрудник D-LINK

Зарегистрирован: Пт янв 21, 2005 11:52
Сообщений: 11212
Откуда: D-Link, Moscow
На DES-3526 можно создать только 9 профилей, поэтому, Вам, нужно их оптимизировать.

_________________
С уважением,
Бигаров Руслан.


Вернуться наверх
 Профиль  
 
СообщениеДобавлено: Ср апр 11, 2012 16:42 
Не в сети

Зарегистрирован: Пн сен 18, 2006 11:17
Сообщений: 270
Откуда: SPb
Bigarov Ruslan писал(а):
Я бы Вам советовал убрать ACL EX_NETBIOS_filter, он избыточен.

ОК, понятно, уберём.
Цитата:

Что касаемо Multicast-а, то от стримера через PIM маршрутизатор и далее через ISM он должен идти приоритезированным, а join-ы и member ship report-ы от клиента DES-3526 и так приоритезирует, поэтому Multicast профиль тоже избыточен, лучше настроить Limited Multicast Ranges и Router Ports Forbiden на клиентских портах для повышения безопасности.

Мы cpu access profile с multicast сделали не для приоритезации, а в попытке фильтрации "лишних" групп типа виндовых 239.255.255.0. Limited Multicast Ranges уже настроены, но почему-то всё равно в pim cache видим эти группы. %(

Спасибо за помощь!


Вернуться наверх
 Профиль  
 
СообщениеДобавлено: Ср апр 11, 2012 17:19 
Не в сети
Сотрудник D-LINK
Сотрудник D-LINK

Зарегистрирован: Пт янв 21, 2005 11:52
Сообщений: 11212
Откуда: D-Link, Moscow
Не за что.

_________________
С уважением,
Бигаров Руслан.


Вернуться наверх
 Профиль  
 
Показать сообщения за:  Сортировать по:  
Начать новую тему Ответить на тему  [ Сообщений: 11 ] 

Часовой пояс: UTC + 3 часа


Кто сейчас на форуме

Сейчас этот форум просматривают: Google [Bot] и гости: 25


Вы не можете начинать темы
Вы не можете отвечать на сообщения
Вы не можете редактировать свои сообщения
Вы не можете удалять свои сообщения
Вы не можете добавлять вложения

Найти:
Перейти:  
Создано на основе phpBB® Forum Software © phpBB Group
Русская поддержка phpBB