This feature exposes the VLAN Content Aware Processor/VLAN Filter Processor (VCAP/VFP) using the ExtremeXOS Access Control List (ACL) manager.
The VCAP/VFP is used to filter packets before ingress processing. It can be used to assign the VLAN, set a class ID, or perform other more traditional ACL actions, such as drop or count. In general, this stage‘s scale, actions, and match criteria are more limited than the ingress stage.
New ACL action modifier:
class-id value 0-4095
This action can be specified on any rule within a policy file or within a list of dynamic access-lists. When specified, this action signifies that the rule is installed in the “LOOKUP stage” access-list resource (VFP).
New ACL match criteria:
class-id value 0-4095
This match condition can be specified on any rule within a policy file or within a list of dynamic access-lists. A rule cannot both match a class-id and specify a class-id as an action. When a “class-id” match criteria is specified, the associated rule is programmed into the normal “INGRESS stage” access-list hardware resource (IFP).