88
Table of Contents
Linksys
Table of Contents
Linksys
NOTE:
Given a mask of 0000 0000 0000 0000 0000 0000 1111 1111 (which means
that you match on the bits where there is 0 and don’t match on the bits
where there are 1’s). You need to translate the 1’s to a decimal integer and
you write 0 for each four zeros. In this example since 1111 1111 = 255, the
mask would be written: as 0.0.0.255.
• Source MAC Address—Select Any if all source address are acceptable or
User Defined to enter a source address or range of source addresses.
• Source MAC Address Value—Enter the MAC address to which the source
MAC address is to be matched and its mask (if relevant).
• Source MAC Wildcard Mask—Enter the mask to define a range of MAC
addresses.
• VLAN ID—Enter the VLAN ID section of the VLAN tag to match.
• 802.1p—Select Match to use 802.1p.
• 802.1p Value—Enter the 802.1p value to be added to the VPT tag.
• 802.1p Mask—Enter the wildcard mask to be applied to the VPT tag.
• EtherType—Enter the frame EtherType to be matched.
STEP 5 Click Apply. The MAC-Based ACE is saved to the Running
Configuration file.
IPv4-Based ACL
IPv4-based ACLs are used to check IPv4 packets, while other types of frames,
such as ARPs, are not checked.
The following fields can be matched:
• IP protocol (by name for well-known protocols or directly by value)
• Source/destination ports for TCP/UDP traffic
• Flag values for TCP frames
• ICMP and IGMP type and code
• Source/destination IP addresses (including wildcards)
• DSCP/IP-precedence value
NOTE:
ACLs are also used as the building elements of flow definitions for per-flow
QoS handling (see QoS Advanced Mode).
The IPv4 Based ACL page enables adding ACLs to the system. The rules are
defined in the IPv4 Based ACE page.
Defining an IPv4-bBased ACL
To define an IPv4-Based ACL:
STEP 1 Click Configuration > Access Control List > IPv4 Based ACL. This page
contains all currently defined IPv4-based ACLs.
STEP 2 Click Add.
STEP 3 Enter the name of the new ACL in the ACL Name field. The names are
case-sensitive.
STEP 4 Click Apply. The IPv4-Based ACL is saved to the Running
Configuration file.
IPv4-Based ACE
To add rules (ACEs) to an IPv4-Based ACL:
STEP 1 Click Configuration > Access Control List > IPv4-Based ACE.
STEP 2 Select an ACL, and click Search. All currently-defined IP ACEs for the
selected ACL are displayed.
STEP 3 Click Add.
STEP 4 Enter the parameters.
• ACL Name—Displays the name of the ACL.
ACE Settings
• ACE Priority—Enter the priority. ACEs with higher priority are processed first.
• Action on Match Packets—Select the action assigned to the packet
matching the ACE. The options are as follows:
• Permit—Forward packets that meet the ACE criteria.
• Deny—Drop packets that meet the ACE criteria.
To Next Page
Loading...
Need help?
General
