70
C
4: M
HAPTER
ANAGING
Modifying IP Based
ACLs
D
S
EVICE
ECURITY
Match IP Precedence — Matches the packet IP Precedence value to
■
the ACE. Either the DSCP value or the IP Precedence value is used to
match packets to ACLs.
Action — Indicates the ACL forwarding action. In addition, the port
■
can be shut down, a trap can be sent to the network administrator, or
packet is assigned rate limiting restrictions for forwarding. The options
are as follows:
Permit — Forwards packets which meet the ACL criteria.
■
Deny — Drops packets which meet the ACL criteria.
■
Shutdown — Drops packet that meets the ACL criteria, and
■
disables the port to which the packet was addressed. Ports are
reactivated from the Port Administration Setup Page.
2 Select an ACL from the ACL Name drop-down list.
3 Define the rule setup fields.
4 Click Apply. The ACL rule setup is enabled, and the device is updated.
The IP Based ACL Modify Page allows the network administrator to
modify IP Based ACLs settings.
Monitor users have no access to this page.
Figure 34 IP Based ACL Modify Page