Switch User's Guide
CSX400 Configuration with QuickSET
CSX400 and CSX400-DC User’s Guide 101
Firewall Configuration Window
The Firewall configuration window shown in Figure 37 displays after clicking on the Firewall...
button in the first Bridging and Routing configuration window. The Firewall configuration window
is used to configure an Access Control List (ACL), and to allow or deny specified IP addresses to
communicate through the CSX400.
The Access Control List option allows you to create access control lists that restrict traffic to, from,
or between specific IP hosts, subnets, or networks. You can configure access control restrictions
based on the following:
• The source, destination, or a combination of the source and destination address of a packet.
• The upper layer protocol type of a packet such as TCP, UDP, ICMP, or all TCP/IP protocols.
• The TCP or UDP port number of a packet.
When an IP Access Control List (ACL) is enabled on a router port, each packet forwarded out this
port is first checked against the ACL. If the address(es) of a packet match the address(es) in the
first filter in the list, the packet is permitted or denied as specified by that filter. If there is no match,
the packet is checked against the second filter, and so on, until a match is found, or until the packet
has been checked against all of the filters in the list. If the packet does not match any of the filters,
then the packet is permitted to pass through the port.