Manualshelf

Reference Guide

ManualsBrandsDell ManualsComputer HardwarePowerEdge VRTX
241242243244245246247248249250
Network Security 247
The following is an example of some of the CLI commands:
ACL Binding
When an ACL is bound to an interface, all the rules that have been defined
for the ACL are applied to that interface. Whenever an ACL is assigned on a
port or LAG, flows from that ingress or egress interface that do not match the
ACL, are matched to the default rule, which is to Drop unmatched packets.
To change the default action for unmatched packets to an action other than
Drop, do the following:
Add an additional ACE to the ACL with "Any" in all fields
Set its action other than Drop
Set the priority to the lowest in the ACL.
To bind ACLs to interfaces:
1
Click
Switching
>
Network Security
>
ACL Binding
to display the
ACL
Binding: Summary
page.
The ports are displayed along with their associated ACLs.
2
To bind an ACL to an interface, select an interface and click
Edit
.
3
Select an ACL(s). You can select one of each type (
MAC-based ACL,
IPv4-based ACL
or
IPv6-based ACL
) or one
IPv4-based ACL
and one
IPv6-based ACL
.
console(config)# ipv6 access-list server
console(config-ipv6-al)# permit tcp 3001::2/64 any any 80