TP-Link T1500 Series - Configuration Example for ACL; Network Requirements; Configuration Scheme

To Next Page

To Previous Page

Configuring ACL Configuration Example for ACL

Configuration Guide

605

Configuration Example for ACL

3.1 Network Requirements

As shown below, a company’s internal server group can provide different types of services.

Computers in the Marketing department are connected to the switch via port 1/0/1, and

the internal server group is connected to the switch via port 1/0/2.

Figure 3-1 Network Topology

Internet

Fa1/0/1

Marketing

IP: 10.10.70.0/24

Server Group

IP: 10.10.80.0/24

Fa1/0/2

It is required that:



The Marketing department can only access internal server group in the intranet.



The Marketing department can only visit http and https websites on the internet.

3.2 Configuration Scheme

To meet the requirements above, you can set up packet filtering by creating an IP ACL and

configuring rules for it.



ACL Configuration

Create an IP ACL and configure the following rules for it:



Configure a permit rule to match packets with source IP address 10.10.70.0/24, and

destination IP address 10.10.80.0/24. This rule allows the Marketing department to

access internal network servers from intranet.

Related product manuals