Acl Overview; Types Of Ip Acls; Acl Ids And Entries - Dell PowerConnect B-FCXs Configuration Manual
Powerconnect b-series fcx
Hide thumbs
Also See for PowerConnect B-FCXs:
- Hardware installation manual (86 pages) ,
- User manual (152 pages) ,
- Getting started manual (260 pages)
Table of Contents
Advertisement
16
ACL overview
NOTE
For information about IPv6 ACLs, refer to
ACL overview
Dell PowerConnect devices support rule-based ACLs (sometimes called hardware-based ACLs),
where the decisions to permit or deny packets are processed in hardware and all permitted packets
are switched or routed in hardware. All denied packets are also dropped in hardware. In addition,
PowerConnect devices support inbound ACLs only. Outbound ACLs are not supported.
NOTE
PowerConnect devices do not support flow-based ACLs.
Rule-based ACLs program the ACL entries you assign to an interface into Content Addressable
Memory (CAM) space allocated for the ports. The ACLs are programmed into hardware at startup
(or as new ACLs are entered and bound to ports). Devices that use rule-based ACLs program the
ACLs into the CAM entries and use these entries to permit or deny packets in the hardware, without
sending the packets to the CPU for processing.
Rule-based ACLs are supported on the following interface types:
•
•
•
•
Types of IP ACLs
You can configure the following types of IP ACLs:
•
•
ACL IDs and entries
ACLs consist of ACL IDs and ACL entries:
•
548
Gbps Ethernet ports
10 Gbps Ethernet ports
Trunk groups
Virtual routing interfaces
Standard – Permits or denies packets based on source IP address. Valid standard ACL IDs are
1 – 99 or a character string.
Extended – Permits or denies packets based on source and destination IP address and also
based on IP protocol information. Valid extended ACL IDs are a number from 100 – 199 or a
character string.
ACL ID – An ACL ID is a number from 1 – 99 (for a standard ACL) or 100 – 199 (for an extended
ACL) or a character string. The ACL ID identifies a collection of individual ACL entries. When
you apply ACL entries to an interface, you do so by applying the ACL ID that contains the ACL
entries to the interface, instead of applying the individual entries to the interface. This makes
applying large groups of access filters (ACL entries) to interfaces simple. Refer to
and named ACLs"
on page 549.
Chapter 19, "Configuring IPv6 Access Control Lists
PowerConnect B-Series FCX Configuration Guide
(ACLs)".
"Numbered
53-1002266-01
Advertisement
Table of Contents
Troubleshooting
