Section 7
ACL
ACL Configuration Wizard
Access Profile List
CPU Access Profile List
ACL Finder
ACL Flow Meter
Access profiles allow you to establish criteria to determine whether or not the Switch will forward packets based on the
information contained in each packet's header. These criteria can be specified on a basis of Packet Content, MAC
address, or IP address.
ACL is used to filter packets. Every ACL rule has its priority. The rule that belongs to lower profile ID has higher
priority. If with the same profile ID, the rule with lower access ID has higher priority.
Packet filtering can help limit network traffic and restrict network used by certain users or devices. ACLs can filter
traffic as it passes through a switch and permit or deny packets at specified interfaces/ports. An ACL is a sequential
collection of permit and deny conditions that apply to packets. When a packet is received on a port, the switch
compares the fields in the packet against any applied ACLs to verify that the packet has the required permissions to
be forwarded, based on the criteria specified in the access profile. It tests packets against the conditions in an access
list one by one.
The ACL consists of profiles and rules. Generally speaking, the profiles specify the to-be-checked range(s) in a
packet, and the rule(s) specify the values of these defined ranges. Each profile can consist of many rules. When the
Switch receives packets, the Switch checks the ranges and values configured in the profiles and rules. The sequence
of ACL matching is decided by profile ID and rule ID. For example, rule 1 of profile 1 will be checked first, if not
matched, rule 2 of profile 1 will be checked consequently. If none of the rules of profile 1 match, the Switch will check
the next profile and rule. If the packet content is equal to the configured rule, it means the condition matches and the
related action defined in that rule will be taken, which can be deny, permit or content replacement (priority tag/DSCP)
or bandwidth control.
The Switch supports a maximum of 14 access profiles. The rules used to define the access profiles are limited to a
total of 1792 rules for the Switch.
ACL Configuration Wizard
The ACL Configuration Wizard will aid with the creation of access profiles and ACL Rules. The ACL Wizard will create
the access rule and profile automatically.
To view this window click, ACL > ACL Configuration Wizard
To Next Page
Loading...
Need help?
General