NETGEAR GS728TP100NAS Switch User Manual


 
Managing Device Security
446
ProSafe M5300 Switch
2. Configure the desired criteria for the new rule.
Rule ID - Specify a number from 1–12 to identify the IP ACL rule. You can create up to
12 rules for each ACL.
Action - Selects the ACL forwarding action, which is one of the following:
Permit - Forwards packets which meet the ACL criteria.
Deny - Drops packets which meet the ACL criteria.
Logging - When set to 'Enable', logging is enabled for this ACL rule (subject to
resource availability in the device). If the Access List Trap Flag is also enabled, this
will cause periodic traps to be generated indicating the number of times this rule was
'hit' during the current report interval. A fixed 5 minute report interval is used for the
entire system. A trap is not issued if the ACL rule hit count is zero for the current
interval. This field is visible for a 'Deny' Action.
Assign Queue - Specifies the hardware egress queue identifier used to handle all
packets matching this IP ACL rule. Valid range of Queue Ids is 0 to 6.
Mirror Interface - Specifies the specific egress interface where the matching traffic
stream is copied in addition to being forwarded normally by the device. This field
cannot be set if a Redirect Interface is already configured for the ACL rule. This field
is visible for a 'Permit' Action.
Match Every - Select true or false from the pull-down menu. True signifies that all
packets will match the selected IP ACL and Rule and will be either permitted or
denied. In this case, since all packets match the rule, the option of configuring other
match criteria will not be offered. To configure specific match criteria for the rule,