Release : 1.1f 904 / 985
Super Micro Intelligent Switch Command Line Interface User Guide
33 ACL (Access Control Lists)
ACLs (Access Control Lists) filter network traffic by controlling whether routed packets are
forwarded or blocked at the router's interfaces. ACLs are used to block IP packets from being
forwarded by a router.
The router examines each packet to determine whether to forward or drop or redirect the packet,
based on the criteria specified within the access lists. Access list criteria can be the source
address of the traffic, the destination address of the traffic, the upper-layer protocol or other
information.
There are many reasons to configure access lists - access lists can be used to restrict contents of
routing updates or to provide traffic flow control. But one of the most important reasons to
configure access lists is to provide security for the network.
Access lists must be used to provide a basic level of security for accessing the network. If access
lists has not been configured on the router, all packets passing through the router can be allowed
onto all parts of the network.
For example, access lists can allow one host to access a part of the network and prevent another
host from accessing the same area.
The list of CLI commands for the configuration of ACL is as follows:
ip access-list
mac access-list extended
permit - standard mode
deny - standard mode
redirect - standard mode
permit- ip/ospf/pim/protocol type
deny - ip/ospf/pim/protocol type
redirect - ip/ospf/pim/protocol type
permit tcp
deny tcp
To Next Page
Loading...
