Ip Extended Acl Configuration - Intellinet 561433 User Manual

Gigabit Ethernet PoE+ Web-Managed AV Switch
specify individual users or groups permitted or denied to specific traffic objects, such as a process or a
program. Each accessible traffic object contains an identifier to its ACL. The privileges determine whether
there are specific traffic object access rights.
ACL implementations can be quite complex (for example, when the ACEs are prioritized for various situations).
In networking, the ACL refers to a list of service ports or network services that are available on a host or server,
each with a list of hosts or servers permitted or denied to use the service. ACL can generally be configured to
control inbound traffic, and in this context, they are similar to firewalls.
The following image shows the IP standard ACL configuration page, which allows users to build multiple ACL
standard IP-rule bases. To create one or more rules, first select an ACL group number. Then, input IP addresses
into the fields below. A rule can match only the source IP address field (with mask). The standard IP rules
control the source IP address packet forwarding.
To configure the rules, the source IP address must have a mask; the rule can match a range of IP addresses.
Example:- If the rule is needed for the IP address range from 192.168.0.0 to 192.168.0.255, then the IP address
would be 192.168.0.1, and its mask 0.0.0.255. Note: each rule must have a filter mode: allow or deny. The
system will automatically give each rule a number. When a rule is deleted, the system will automatically resort
to the existing rule sort order.

IP EXTENDED ACL CONFIGURATION

The following image shows the IP extended ACL configuration page. The extended IP group is an extension
of the standard IP rules. Packet forwarding can be configured via source IP, Destination IP, IP protocol type or
service port.
Switch
Switch
User Manual
21