User`s guide

Signamax
065-7841 24-Port 10/100/1000BaseT/TX Managed Switch
104
3-8. ACL
The 065-7841 switch access control list (ACL) is probably the most
commonly used object in the IOS. It is used for packet filtering but also for selecting
types of traffic to be analyzed, forwarded, or influenced in some way.
The ACLs are divided into EtherTypes. IPv4, ARP protocol, MAC and VLAN
parameters etc. Here we will just go over the standard and extended access lists for
TCP/IP. As you create ACEs for ingress classification, you can assign a policy for
each port, the policy number is 1-8, however, each policy can be applied to any port.
This makes it very easy to determine what type of ACL policy you will be working
with.
3-8-1.Ports
Function name:
ACL Port Configuration
Function description:
The switch ACL function support up to 128 Access Control Entries (ACEs),
using the shared 128 ACEs for ingress classification. You can create an ACE
and assign this ACE for each port with <Any> or assign this ACE for a policy
or assign this ACE for a port. There are 8 policies, each port can select one of
policy, then decides which of the following actions would take according to the
packet’s IPv4, EtherType, ARP Protocol, MAC Parameters and VLAN
parameters:
- Packet Deny or Permit
- Rate Limiter (Unit: pps)
- Port Copy (1 – 24)
Parameter description:
Port #:
Port number: 1~24
Policy ID:
Policy ID range:1~8
Action:
Permit or Deny forwarding the met ACL packets
Rate Limiter ID:
Disabled: Disable Rate Limitation
Rate Limiter ID Range: 1~16. To select one of rate limiter ID for this port,
it will limit met ACL packets by rate limiter ID configuration.
Port Copy:
Disabled: Disable to copy the met ACL packets to specific port
Port number: 1~24. Copy the met ACL packets to the selected port