67
10 Firewall
This chapter mainly contains the following contents:
Access Control
NAT
Brief Introduction of ACL
With the expansion of network and increase in flow, the control over network safety and the
allocation of bandwidth become the important contents of network management. The access to
network by illegal users can be effectively prevented through filtering data package. Meanwhile, the
flow can also be controlled to save network resources. Access Control List (ACL) achieves the
function of package filtration through configuring the matching rule of packet and processing
operations.
Upon receipt of message, the port of switch will analyze the field of packet according to the ACL
rule applied on the current port. After identifying the specific packet, it will permit or prohibit
appropriate data package to pass through according to the preset policy.
The data package matching rules as defined by ACL can also be used by other functions requiring
flow distinguish, e.g. the definition of flow classification rules in QoS.
ACL classifies data packages through a series of matching conditions. These conditions can be the
source MAC address, destination MAC address, source IP address, destination IP address, port
number, etc., of data packages.
10.1 Access Control
Page Wizard: Firewall → Access Control
The meanings of key items in the page are shown in the table below.
To Next Page
Loading...
