Protection from unauthorized access
90
6.6
Access Control Lists (ACL)
Basic - L3P
Release
3.1
06/07
6.6 Access Control Lists (ACL)
Access Control Lists (ACL) provide you with the option of filtering,
forwarding, redirecting or prioritising data packets on receipt. The Switch
offers
D MAC-based ACLs
D IP-based ACLs
The switch considers the ACLs when it receives a package. This is why the
lists are called Ingress ACLs.
The Switch offers the following ACL capabilities:
D Up to 100 ACLs
D 10 rules per ACLs
D Up to 100 rules per interface
D Up to 1000 rules on all interfaces together
D Possible actions:
– permit and deny
– in combination with permit: assign-queue and redirect
D “Deny everything” is always the (invisible) final rule. It comes into effect
if
no other rules apply to this interface.
Note: In the prioritizing with “assign queue”, the Switch overwrites any
priority entered in the VLAN tag (see
page 137) of a data packet.
The configuration of ACLs includes the following steps:
D First of all define ACL and then
D attach the ACL to one or all interfaces.
You can connect ACLs to all physical ports and to all link aggregation
interfaces.
To Next Page
Loading...
Need help?
General
