Table of Contents
Advertisement
4.10.2 Access Control List Configuration
This page shows the Access Control List (ACL), which is made up of the ACEs defined on this switch. Each row describes the
ACE that is defined. The maximum number of ACEs is 512 on each switch.
Click on the lowest plus sign to add a new ACE to the list. The reserved ACEs used for internal protocol, cannot be edited or
deleted, the order sequence cannot be changed and the priority is highest. The Access Control List Configuration screen in
Figure 4-10-2
appears.
The page includes the following fields:
Object
• Ingress Port
• Policy / Bitmask
• Frame Type
• Action
Figure 4-10-2: Access Control List Configuration page Screenshot
Description
Indicates the ingress port of the ACE. Possible values are:
■
All: The ACE will match all ingress port.
■
Port: The ACE will match a specific ingress port.
Indicates the policy number and bitmask of the ACE.
Indicates the frame type of the ACE. Possible values are:
■
Any: The ACE will match any frame type.
■
EType: The ACE will match Ethernet Type frames. Note that an
Ethernet Type based ACE will not get matched by IP and ARP
frames.
■
ARP: The ACE will match ARP/RARP frames.
■
IPv4: The ACE will match all IPv4 frames.
■
IPv4/ICMP: The ACE will match IPv4 frames with ICMP protocol.
■
IPv4/UDP: The ACE will match IPv4 frames with UDP protocol.
■
IPv4/TCP: The ACE will match IPv4 frames with TCP protocol.
■
IPv4/Other: The ACE will match IPv4 frames, which are not
ICMP/UDP/TCP.
■
IPv6: The ACE will match all IPv6 standard frames.
Indicates the forwarding action of the ACE.
■
Permit: Frames matching the ACE may be forwarded and learned.
■
Deny: Frames matching the ACE are dropped.
User's Manual of SGS-5220 Series
212
Advertisement
Table of Contents
