270 Configuring Switching Information
IP ACL Rule Configuration
Use the IP ACL Rule Configuration page to define rules for IP-based ACLs. The access list definition
includes rules that specify whether traffic matching the criteria is forwarded normally or discarded.
Additionally, you can specify to assign traffic to a particular queue, filter on some traffic, change VLAN
tag, shut down a port, and/or redirect the traffic to a particular port.
NOTE: There is an implicit "deny all" rule at the end of an ACL list. This means that if an ACL is applied to a packet
and if none of the explicit rules match, then the final implicit "deny all" rule applies and the packet is dropped.
To display the IP ACL Rule Configuration page, click Switching > Network Security > Access Control
Lists > IP Access Control Lists > Rule Configuration in the tree view.
Figure 7-9. IP ACL - Rule Configuration (Standard)
The IP ACL Rule Configuration page contains the following fields:
•
IP ACL Name
— Specifies an existing IP ACL. To set up a new IP ACL use the "IP ACL
Configuration" page.
•
Rule ID
— Selects or creates user-defined ACLs. Enter an existing Rule ID, or create a new one by
selecting Create from the drop-down menu and entering the desired new Rule ID in the field next to
it. The new ID is created once Apply Changes is clicked. Up to 127 rules can be created for each ACL.