User Manual
Table Of Contents
- S3300 Smart Managed Pro Switch
- Contents
- 1. Getting Started
- Getting Started with the NETGEAR Switch
- Switch Management Interface
- Connect the Switch to the Network
- Discover a Switch in a Network with a DHCP Server
- Discover a Switch in a Network without a DHCP Server
- Configure the Network Settings on the Administrative System
- Access the Management Interface from a Web Browser
- Understand the User Interfaces
- Interface Naming Convention
- Configuring Interface Settings
- Online Help
- Registration
- 2. Configure System Information
- 3. Configuring Switching
- 4. Configuring Routing
- 5. Configuring Quality of Service
- 6. Managing Device Security
- 7. Maintenance
- 8. Monitoring the System
- A. Configuration Examples
- B. Hardware Specifications and Default Values
Managing Device Security
281
S3300 Smart Managed Pro Switch
Figure 101. Standard ACL Rule Configuration
4. In the Sequence Number field, specify a number in the range from 1 to 2147483647 to
identify the IP ACL rule.
5. Select or
specify values for one or more of the following match criteria:
• Seq
uence Number. Specify a number in the range of 1 to 2147483647 to identify the
IP ACL rule. You can create up to 50 rules for each ACL.
• Action. Sele
ct the ACL forwarding action, which is one of the following:
- Permit. Forward p
ackets which meet the ACL criteria.
- Deny. Drop
packets which meet the ACL criteria.
• Egres
s Queue. The hardware egress queue identifier used to handle all packets
matching this ACL rule.
• L
ogging. When set to Enable, logging is enabled for this ACL rule (subject to
resource availability in the device). If the Access List Trap Flag is also enabled, then
this causes periodic traps to be generated indicating the number of times this rule was
hit during the current report interval. A fixed 5-minute report interval is used for the
entire system. A trap is not issued if the ACL rule hit count is zero for the current
interval. This field is visible for a Deny action.
• Match Ev
ery. Require a packet to match the criteria of this ACL. Select True or False
from the drop-down list. Match Every is exclusive to the other filtering rules, so if
Match Every is True, the other rules on the screen are not available.
• Src IP Addres
s. Require a packet’s source IP address to match the address listed
here. Enter an IP Address in the appropriate field using dotted-decimal notation. The
address you enter is compared to a packet’s source IP Address.
• Src IP Mask.
Specify the source IP address wildcard mask. Wild card masks
determine which bits are used and which bits are ignored. A wild card mask of
255.255.255.255 indicates that no bit is important. A wildcard of 0.0.0.0 indicates that
all of the bits are important. Wildcard masking for ACLs operates differently from a