Setting The Acl Name And Type - SMC Networks TigerStack II SMC8848M Management Manual
Gigabit ethernet switch
Hide thumbs
Also See for TigerStack II SMC8848M:
- Specifications (2 pages) ,
- Installation manual (96 pages) ,
- Specifications (2 pages)
Table of Contents
Advertisement
A
C
CCESS
ONTROL
The order in which active ACLs are checked is as follows:
1.User-defined rules in IP and MAC ACLs for ingress ports are checked in
parallel.
2. Rules within an ACL are checked in the configured order, from top to
bottom.
3. If the result of checking an IP ACL is to permit a packet, but the result
of a MAC ACL on the same packet is to deny it, the packet will be
denied (because the decision to deny a packet has a higher priority for
security reasons). A packet will also be denied if the IP ACL denies it
and the MAC ACL accepts it.
Setting the ACL Name and Type
Use the ACL Configuration page to designate the name and type of an
ACL.
Command Attributes
• Name – Name of the ACL. (Maximum length: 16 characters)
• Type – There are three filtering modes:
- IP Standard: IPv4 ACL mode that filters packets based on the source
IPv4 address.
- IP Extended: IPv4 ACL mode that filters packets based on source or
destination IPv4 address, as well as protocol type and protocol port
number. If the "TCP" protocol is specified, then you can also filter
packets based on the TCP control code.
- IPv6 Standard: IPv6 ACL mode that filters packets based on the
source IPv6 address.
- IPv6 Extended: IPv6 ACL mode that filters packets based on the
destination IP address, as well as the type of the next header and the
flow label (i.e., a request for special handling by IPv6 routers).
- MAC: MAC ACL mode that filters packets based on the source or
destination MAC address and the Ethernet frame type (RFC 1060).
7-2
L
ISTS
Hide quick links:
Advertisement
Table of Contents
