Filter
Top Products
300 Configuring Switching Information
IP ACL Configuration
Access control lists (ACL) allow network managers to define classification actions and rules for specific
ingress ports. Your switch supports up to 100 ACLs. However, the hardware resources are limited and may
not be able to fully support 100 completely populated ACLs.
Packets can be filtered on ingress or egress. If the filter rules match, then some actions can be taken,
including dropping the packet or disabling the port. For example, a network administrator defines an
ACL rule that says port number 20 can receive TCP packets. However, if a UDP packet is received the
packet is dropped.
ACLs are composed of access control entries (ACE), or rules, that consist of the filters that determine
traffic classifications. The total number of rules that can be defined for each ACL is 127.
Use the IP ACL Configuration page to add or remove IP-based ACLs.
To display the IP ACL Configuration page, click Switching
→
Network Security
→
Access Control Lists
→
IP Access Control Lists
→
Configuration in the tree view.
Figure 7-6. IP ACL Configuration
The IP ACL Configuration page contains the following fields:
•
IP ACL Name
— Specifies user-defined name for the ACL.
•
Remove
— Removes the IP ACL selected in the IP ACL field.
Adding an IP-based ACL
1.
Open the
IP ACL Configuration
page.
2.
Click
Add
.
The
Add IP ACL
page displays.