1. Manuals
  2. Brands
  3. UTStarcom Manuals
  4. Switch
  5. iSpirit 3026
  6. Manual

Introduction To Acl Filtration - UTStarcom iSpirit 3026 Manual

Hide thumbs
Table of Contents

Advertisement

OSPF), resource ports (e.g. 161), and purpose port. Users can be based ondifferent demands to
configure different regulations to control the visit.
For iSpirit 3026 one-group regulation can be applied for many purposes, e.g. one group
regulation at the same time is cited by port visit filtration and service visit filtration or at the same
time cited by port visit filtration of the two ports. Once one group regulation is cited by one or
more applications, which cannot be added, modified or deleted; aforesaid can be only operated
when the group of regulation is not cited. Accounting of the group will be showd when carry out
access-list.
In all ACL regulations defaulted hide the regulation that refuses all IP protocol (0x0800) packet
regulations. The hidden regulation will not be existed if there is a regulation denies or permits all
IP protocol (0x0800) packet.

11.2 Introduction to ACL filtration

ACL filtration is carried out in the input port of the switch, and match with the data flow in this port
to realize filtration for the port. ACL filtration is processed by the hardware of the switch, which
will not influence the tranference efficiency of data flow.
All data flow input from this port will not be matched in regulation if the port of the switch is not
configured with Acl filtrator, but it can be forwarded through this port. All data flow input from this
port will be matched in regulation if the port of the switch is configured with Acl filtrator, and the
data flow can be forwarded if the matched movement is "permit", but if it is the "deny" it cannot
be forwarded but will be thrown away.
One port can only choose one ACL regulation group when configure port ACL filtration, after
which lead the group into port FFP. If there are not regulations that refuse or permit all IP
protocol (0x0800) packet, one regulation that refuse all IP protocol (0x0800) should be added
when write into FFP.
For example there is only one regulation: access-list 1 permit 192.168.1.0 0.0.0.255, default will
hide a regulation that refuse all IP protocol (0x0800) packet, in fact there will be two regulation to
lead inot FFP of port. Only the data flow from 192.168. 1.0 to 192.168.1.255 by source address
can be forwarded through this port when make filtration for data flow, and all other data flows will
be deleted.

Advertisement

Table of Contents
loading

Related Products for UTStarcom iSpirit 3026

Table of Contents