Access Control
Configuring IPv4-Based ACEs
Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x
•
Action—Select the action assigned to the packet matching the ACE. The
options are as follows:
Permit
-
—Forwards packets that meet the ACE criteria.
Deny
-
—Drops packets that meet the ACE criteria.
-
Shutdown
—Drops packet that meets the ACE criteria and disables the
port to which the packet was addressed. Ports are reactivated from the
Port Management page.
•
Protocol—Creates an ACE based on a specific protocol or protocol ID.
Select Any (IP) to accept all IP protocols. Otherwise select one of the
following protocols from the drop-down menu:
ICMP
-
—Internet Control Message Protocol
IP in IP
-
—IP in IP encapsulation
TCP
-
—Transmission Control Protocol
-
EGP
—Exterior Gateway Protocol
IGP
-
—Interior Gateway Protocol
UDP
-
—User Datagram Protocol
-
HMP
—Host Mapping Protocol
RDP
-
—Reliable Datagram Protocol
IPV6
-
—IPv6 over IPv4 tunneling
-
IPV6:ROUT
—Matches packets belonging to the IPv6 over IPv4 route
through a gateway
IPV6:FRAG
-
—Matches packets belonging to the IPv6 over IPv4 Fragment
Header
RSVP
-
—ReSerVation Protocol
IPV6:ICMP
-
—Internet Control Message Protocol
-
OSPF
—Open Shortest Path First
PIM
-
—Protocol Independent Multicast
L2TP
-
—Layer 2 Tunneling Protocol
•
Protocol ID to match—Instead of selecting the name, enter the protocol ID.
17
231