NETGEAR 7000 Switch User Manual


 
NETGEAR 7000 Series Managed Switch Administration Guide
7-4 Access Control Lists (ACLs)
v1.1, May 2006
The following is an example of configuring ACL support on a 7000 Series Managed Switch:
MAC ACL CLI Examples
The following are examples of the commands used for the MAC ACLs feature.
Create ACL 101.
Define the first rule: it will permit packets with a match on the
specified Source IP address, after the mask has been applied, that
are carrying TCP traffic, and are sent to the specified
Destination IP address.
(Netgear Switch) #config
(Netgear Switch) (Config)#access-list 101 permit tcp 192.168.77.0 0.0.0.255
192.178.77.0 0.0.0.255
Define the second rule for ACL 101.
Define the rule to set similar conditions for UDP traffic as for
TCP traffic.
(Netgear Switch) (Config)#access-list 101 permit udp 192.168.77.0 0.0.0.255
192.178.77.0 0.0.0.255
Apply the rule to inbound traffic on port 1/0/2. Only traffic
matching the criteria will be accepted.
(Netgear Switch) (Config)#interface 1/0/2
(Netgear Switch) (Interface 1/0/2)#ip access-group 101 in
(Netgear Switch) (Interface 1/0/2)#exit
(Netgear Switch) (Config)#exit