User manual
APS User Manual
65
1.2.2-3 Access Control List
The section describes how to configure Access Control List rules. An Access Control List (ACL) is a
sequential list of permit or deny conditions that apply to IP addresses, MAC addresses, or other
more specific criteria. This switch tests ingress packets against the conditions in an ACL one by one.
A packet will be accepted as soon as it matches a permit rule, or dropped as soon as it matches a
deny rule. If no rules match, the frame is accepted. Other actions can also be invoked when a
matching packet is found, including rate limiting, mirroring, redirecting matching packets to another
port or to the system log, or shutting down a port.
This page shows the Access Control List (ACL), which is made up of the ACE’s defined on this switch.
Each row describes the ACE that is defined. The maximum number of ACE’s is 256 on each switch.
Click on the lowest plus sign to add a new ACE to the list. The reserved ACE’s used for internal
protocol, cannot be edited or deleted, the order sequence cannot be changed and the priority for
these entries is the highest.
Web Interface
To configure the ACL Rules via the Web Interface:
1. Click Configuration, ACL and Access Control List.
2. Click the icon to add a new ACL or use the other ACL modification buttons, to edit or
remove an existing ACL entry.
3. Click the Apply button to save your changes or the Reset button to revert to previous
settings.
When editing an entry on the ACE Configuration page, note that the Items displayed depend on
various selections, such as Frame Type and IP Protocol Type. Specify the relevant criteria to be
matched for this rule, and set the actions to take when a rule is matched (such as Rate Limiter,
Port Redirection, Logging, and Shutdown).