Acl; Ports - Draytek VigorSwitch G2240 User Manual

Vigorswitch

Hide thumbs Also See for VigorSwitch G2240:

Specifications (4 pages)

Quick start (2 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

Table of Contents

The 24 Gigabit L2 Managed Switch access control list (ACL) is probably the most

commonly used object in the IOS. It is used for packet filtering but also for selecting types

of traffic to be analyzed, forwarded, or influenced in some way.

The ACLs are divided into EtherTypes. IPv4, ARP protocol, MAC and VLAN parameters

etc. Here we will just go over the standard and extended access lists for TCP/IP. As you

create ACEs for ingress classification, you can assign a policy for each port, the policy

number is 1-8, however, each policy can be applied to any port. This makes it very easy to

determine what type of ACL policy you will be working with.

Function name:

ACL Ports Configuration

Function description:

The switch ACL function support up to 128 Access Control Entries (ACEs), using the

shared 128 ACEs for ingress classification. You can create an ACE and assign this ACE

for each port with <Any> or assign this ACE for a policy or assign this ACE for a port.

There are 8 policies, each port can select one of

following actions would take according to the packet's IPv4, EtherType, ARP Protocol,

MAC Parameters and VLAN parameters:

Packet Deny or Permit

Rate Limiter (Unit: pps)

Port Copy (1 – 24)

user-definable. To set up a trap host means to create a trap

manager by assigning an IP address to host the trap message.

In other words, the trap host is a network management unit

with SNMP manager receiving the trap message from the

managed switch with SNMP agent issuing the trap message.

6 trap hosts can prevent the important trap message from

losing.

For each public trap, the switch supports the trap event Cold

Start, Warm Start, Link Down, Link Up and Authentication

Failure Trap. They can be enabled or disabled individually.

When enabled, the corresponded trap will actively send a

trap message to the trap host when a trap happens. If all

public traps are disabled, no public trap message will be sent.

As to the Enterprise (no. 6) trap is classified as private trap,

which are listed in the Trap Alarm Configuration function

folder.

Default for all public traps: Enable.

policy, then decides which of the

VigorSwitch G2240 User's Guide

Table of Contents

Acl; Ports - Draytek VigorSwitch G2240 User Manual

Related Manuals for Draytek VigorSwitch G2240

Related Content for Draytek VigorSwitch G2240

Table of Contents