Manualshelf

Owner's Manual

ManualsBrandsDell ManualsSoftwareDell OpenManage Network Manager Version 4.4
321322323324325326327328329330
327
Access Profile
This screen manages the access control list (ACL) profiles for the selected device.
Figure 13-80. Access Profile
Access Control Lists (ACL), which consist of Access Control Entries (ACE), allow network
managers to define classification actions and rules for specific ingress ports. Packets entering an
ingress port, with an active ACL, are either admitted or denied entry and the ingress port is
disabled. If they are denied entry, the user can disable the port.
When an ACL is bound to an interface, all the ACE rules that have been defined are applied to the
selected interface.Whenever an ACL is assigned on a port or LAG, flows from that ingress interface
that do not match the ACL are matched to the default rule, which drops unmatched packets.
For example, a network administrator defines an ACL rule that states, port number 20 can receive
TCP packets, however, if it receives a UDP packet, it drops the packet.
ACLs consist of access control entries (ACEs) made of the filters that determine traffic
classifications. Each ACE is a rule, and 1,024 rules are available. But rules are not only used for user
configuration purposes, they are also used for features like iSCSI and PVE, so not all 1,024 are
available for ACEs. At least 600 rules are therefore available.