User manual
C
HAPTER
4
| Configuring the Switch
Configuring Security
– 99 –
Figure 33: ACL Rate Limiter Configuration
CONFIGURING ACCESS CONTROL LISTS
Use the Access Control List Configuration page to define filtering rules for
an ACL policy, for a specific port, or for all ports. Rules applied to a port
take effect immediately, while those defined for a policy must be mapped
to one or more ports using the ACL Ports Configuration menu (page 96).
PATH
Advanced Configuration, Security, Network, ACL, Access Control List
USAGE GUIDELINES
◆ Rules within an ACL are checked in the configured order, from top to
bottom. A packet will be accepted as soon as it matches a permit rule,
or dropped as soon as it matches a deny rule. If no rules match, the
frame is accepted.
◆ The maximum number of ACL rules that can be configured on the
switch is 128.
◆ The maximum number of ACL rules that can be bound to a port is 10.
◆ ACLs provide frame filtering based on any of the following criteria:
■
Any frame type (based on MAC address, VLAN ID, VLAN priority)
■
Ethernet type (based on Ethernet type value, MAC address, VLAN
ID, VLAN priority)
■
ARP (based on ARP/RARP type, request/reply, sender/target IP,
hardware address matches ARP/RARP MAC address, ARP/RARP
hardware address length matches protocol address length, matches
this entry when ARP/RARP hardware address is equal to Ethernet,