Gigabit Ethernet Switch Management Guide
Binding a Port to an Access Control List
15-11
15
Binding a Port to an Access Control List
After configuring the Access Control Lists (ACL), you should bind them to the ports
that need to filter traffic. You can only bind a port to one ACL for each basic type –
IPv4 ingress, MAC ingress, and IPv6 ingress.
Command Usage
• This switch supports ACLs for ingress filtering only.
Command Attributes
• Port – Fixed port, SFP module, or XFP module. (Range: 1-24/48)
• IP – Specifies the IPv4 ACL to bind to a port.
• MAC – Specifies the MAC ACL to bind to a port.
• IPv6 – Specifies the IPv6 ACL to bind to a port.
• IN – ACL for ingress packets.
• ACL Name – Name of the ACL.
Web – Click Security, ACL, Port Binding. Mark the Enable field for the port you want
to bind to an ACL for ingress traffic, select the required ACL from the drop-down list,
then click Apply.
Figure 15-7 ACL Port Binding
CLI – This examples assigns an IP and MAC ingress ACL to port 1, and an IP
ingress ACL to port 2.
Console(config)#interface ethernet 1/1 45-1
Console(config-if)#ip access-group tom in 44-6
Console(config-if)#mac access-group jerry in 44-15
Console(config-if)#exit
Console(config)#interface ethernet 1/2
Console(config-if)#ip access-group tom in
Console(config-if)#