Manualshelf

Installation guide

ManualsBrandsMotorola ManualsComputer equipmentRFS7000 Series
311312313314315316317318319320
Switch Security
6-27
The rules within an ACL are applied to packets based on their precedence value. Rules with lower
precedence are always applied first.
6. Use the Operation drop-down menu (if necessary) to modify the permit, deny or mark designation for
the ACL. If the action is to mark, the packet is tagged for priority.
7. Select the Logging checkbox to allow the log messages to be generated when a packet has been
forwarded, denied or marked based on the criteria specified in the access lists.
8. If mark is selected from within the Operations drop-down menu, the Attribute to mark field
becomes enabled. If necessary, select the 802.1p (0 - 7) or TOS(0 - 255) checkbox and define the
attribute receiving priority with this ACL mark designation.
9. From within the Filters field, modify (if necessary) the Protocol from the drop-down menu. The
switch supports ACL rule filters for the following protocols: icmp, ip, tcp, udp.
10. If the selected Protocol is icmp, (if necessary) click the Protocol Options button to modify the
ICMP Type and ICMP Code.
11. If the selected Protocol is tcp or udp, (if necessary) click the Protocol Options button to modify
the source and destination Port.
12. From within the Filters field, modify (if necessary) the Source Wildcard/Mask from the drop-down
menu.
The source is the source address of the network or host in dotted decimal format. The Source-mask
is the network mask.
13. Use the Source Address field to edit (if necessary) the IP address from where the packets are
sourced.
14. Refer to the Status field for the current state of the requests made from applet. This field displays
error messages if something goes wrong in the transaction between the applet and the switch.
15. Click OK to use the changes to the running configuration and close the dialog.
16. Click Cancel to close the dialog without committing updates to the running configuration.
6.5.3 Attaching an ACL L2/L3 Configuration
Use the Attach tab to view and assign the ACL to a physical interface or VLAN on the switch.
To attach an interface:
1. Select Security > ACLs from the main menu tree.
NOTE If adding an access control entry to an ACL using the switch SNMP interface,
Precedence is a required parameter.
NOTE If wanting to block icmp requests from an MU to the switch, set the icmp type to 8
and the code to 0.