Acl Overview - Motorola RFS Series System Reference Manual
Wireless lan switches wing system
Hide thumbs
Also See for RFS Series:
- Reference manual (948 pages) ,
- Reference manual (506 pages) ,
- Reference manual (1054 pages)
Table of Contents
Advertisement
applied ACLs to verify the packet has the required permissions to be forwarded, based on the criteria
specified in the access lists.
NOTE: If a packet does not meet any of the criteria specified in the ACL, the packet is
dropped.
Use the
Wireless Firewall
ACL consists of series of entries called an Access Control Entry (ACE). Each ACE defines the rule which
defines whether the packets needs to be switched/routed or needs to be dropped. The ACL screen displays
three tabs:
• Security Policy
• Configuration
• Statistics
Each of these tabs has sub tabs which provide configuration options for creating and attaching the ACLs.
NOTE: For an overview of how the switch uses an ACL to filter permissions to the switch
managed network, go to
6.4.1 ACL Overview
An ACL contains an ordered list of Access Control Entries (ACEs). Each ACE specifies an action and a set of
conditions that a packet must satisfy in order to match the ACE. The order of conditions in the list is critical
because the switch stops testing conditions after the first match.
The switch supports the following ACLs to filter traffic:
• Router ACLs — Applied to VLAN (Layer 3) interfaces. These ACLs filter traffic based on Layer 3
parameters like source IP, destination IP, protocol types and port numbers. They are applied on packets
routed through the switch. Router ACLs can be applied to inbound traffic only, not both directions.
• Port ACLs— Applied to traffic entering a Layer 2 interface. Only switched packets are subjected to these
kind of ACLs. Traffic filtering is based on Layer 2 parameters like–source MAC, destination MAC,
Ethertype, VLAN-ID, 802.1p bits (OR) Layer 3 parameters like– source IP, destination IP, protocol, port
number.
NOTE: Port and router ACLs can be applied only in an inbound direction. WLAN ACLs
support applying ACLs in the inbound and outbound direction.
• Wireless LAN ACLs - A Wireless LAN ACL is designed to filter/mark packets based on the wireless LAN
from which they arrived rather than filtering the packets arrived on Layer 2 ports.
For more information, see
•
Router ACLs
•
Port ACLs
•
Wireless LAN ACLs
•
ACL Actions
•
Precedence Order
screen to view, add and configure access control configurations. Typically, an
ACL Overview on page
Switch Security
6-15.
6-15
- Quick Links:
- Accessing the Switch Web Ui
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
