- 86 -
Case 5: Deny Specify Protocol – HTTP / WWW
Purpose:
Verify positive and negative matches to network IP address with a specific protocol or TCP/UDP Port number, no
matter the rule defined as permit or deny.
1. Packets with Layer 4 protocol match the specific ACL protocol will be dropped.
2. Packets with Layer 4 protocol not match the specific ACL protocol will be forwarded.
Case Design:
Action DENY
Match Protocol
Service Type HTTP/WWW ( Port 80)
Source IP Address Host
Destination IP Address ANY
Device Connection and Configuration:
Stream
Target
ID Source Address Destination Address
Protocol
Host
5
192.168.1.1 /
255.255.255.255
ANY
HTTP
( Port 80)
ACL Policy Configuration: