-
Notifications
You must be signed in to change notification settings - Fork 1.2k
ACL Configuration High Level Design
Oleksandr Ivantsiv edited this page Aug 11, 2017
·
5 revisions
| Rev | Date | Author | Change Description |
|---|---|---|---|
| 0.1 | Oleksandr Ivantsiv | Initial version |
This document provides general information about the ACL configuration implementation in SONiC.
This document describes the high-level design of the ACL configuration.
Following diagram describes a top level overview of the SONiC ACL configuration components: TODO: Image
TODO
TODO: Reference to page with requirements
key = ACL_TABLE:name ; acl_table_name must be unique
;field = value
policy_desc = 1*255VCHAR ; name of the ACL policy table description
type = "mirror"/"l3" ; type of acl table, every type of
; table defines the match/action a
; specific set of match and actions.
ports = [0-max_ports]*port_name ; the ports to which this ACL
; table is applied, can be emtry
; value annotations. Supports phisycal port,
; port channels and VLAN interfaces.
port_name = 1*64VCHAR ; name of the port, must be unique
max_ports = 1*5DIGIT ; number of ports supported on the chip
key = MIRROR_SESSION:mirror_session_name ; mirror_session_name is
; unique session
; identifier
; field = value
status = "active/inactive" ; Session state.
src_ip = <ip_addr> ; Optional. Session souce IP address
dst_ip = <ip_addr> ; Session destination IP address
gre_type = <uint16_t> ; Optional. Session GRE protocol type
dscp = <uint8_t> ; Optional. Session DSCP
ttl = <uint8_t> ; Session TTL
queue = <uint8_t> ; Optional. Session output queue
If optional value is not specified it will be filled with platform dependent default.
-
For Users
-
For Developers
-
Subgroups/Working Groups
-
Presentations
-
Join Us