NETGEAR 7000 manual Process, IP ACL CLI Example

Page 65

NETGEAR 7000 Series Managed Switch Administration Guide

Process

To configure ACLs, follow these steps:

•Create an ACL by specifying a name (MAC ACL) or a number (IP ACL)

•Add new rules to the ACL

•Configure the match criteria for the rules

•Apply the ACL to one or more interfaces

IP ACL CLI Example

The script in this section shows you how to set up an IP ACL with two rules, one applicable to TCP traffic and one to UDP traffic. The content of the two rules is the same. TCP and UDP packets will only be accepted by the 7000 Series Managed Switch if the source and destination stations have IP addresses that fall within the defined sets.

Figure 7-1

Access Control Lists (ACLs)

7-3

v1.1, May 2006

Image 65

Contents Netgear 7000 Series Managed Switch Administration Guide Statement of Conditions TrademarksEN 55 022 Declaration of Conformance Certificate of the Manufacturer/ImporterFCC Guidelines for Human Exposure FCC Information to UserDeclaration Of Conformity Regulatory Compliance InformationProduct and Publication Details Series Managed SwitchContents Link Aggregation Chapter Virtual Router Redundancy Protocol Chapter Differentiated Services Chapter Pre-Login Banner Chapter Syslog Document Organization About This BookCLI Documentation AudienceRelated Documentation Xiv Using BootP or Dhcp Configuring for In-band ConnectivityChapter Getting Started In-band and Out-of-band ConnectivityUsing the EIA-232 Port Configuring for Out-Of-Band Connectivity Initial Configuration Starting the SwitchInitial Configuration Procedure Quick Starting the Networking Device Software InstallationSystem Information and System Setup Quick Start Commands Mode Description You power down or reset the networking device. In a stacking Quick Start Commands Figurations made to the networking device Configuring for Web Access Chapter Using the Web InterfaceWeb Page Layout Configuring an Snmp V3 User ProfileStarting the Web Interface Save Command ButtonsNetgear 7000 Series Managed Switch Administration Guide Chapter Virtual LANs Example #1 Create Two VLANs Vlan Configuration ExampleCLI Examples Example #3 Assign Ports to VLAN3 Example #4 Assign VLAN3 as the Default VlanExample #2 Assign Ports to VLAN2 Graphical User Interface CLI Example Link Aggregation1shows the example network STP Example 1 Create two LagsExample 2 Add the ports to the LAGs Example 3 Enable both LAGsPort Routing Chapter IP Routing ServicesPort Routing Configuration CLI Examples Example 1. Enabling routing for the SwitchVlan Routing Example 2. Enabling Routing for Ports on the SwitchVlan Routing Configuration Example 1 Create Two VLANs Example 2 Set Up Vlan Routing for the VLANs and the SwitchVlan Routing RIP Configuration CLI Example Netgear 7000 Series Managed Switch Administration Guide Vlan Routing Ospf Configuration Netgear 7000 Series Managed Switch Administration Guide Routing Information Protocol RIP ConfigurationCLI Example Example #1 Enable Routing for the SwitchExample #3. Enable RIP for the Switch Example #2 Enable Routing for PortsOspf Example #4. Enable RIP for ports 1/0/2 and 1/0/3CLI Examples Example #1 Configuring an Inter-Area Router Netgear 7000 Series Managed Switch Administration Guide Example #2 Configuring Ospf on a Border Router Enable routing for the switch Overview Proxy Address Resolution Protocol ARPExample #2 ip proxy-arp Example #1 show ip interfaceChapter Virtual Router Redundancy Protocol Virtual Router Redundancy Protocol Enable Vrrp for the switch Set the priority for the port. The default priority is Overview Chapter Access Control Lists ACLsMAC ACLs LimitationsConfiguring IP ACLs IP ACL CLI Example ProcessMAC ACL CLI Examples Example #1 mac access list Example #2 permit any Example #3 Configure mac access-group Example #4 permit Example #5 show mac access-lists Netgear 7000 Series Managed Switch Administration Guide Trusted Ports Chapter Class of Service CoS QueuingCoS Queue Mapping Untrusted Ports CoS Queue ConfigurationPort Egress Queue Configuration Per Interface Basis Drop Precedence Configuration per QueueExample #2 set classofservice trust mode Example #1 show classofservice trustExample #3 show classofservice ip-precedence mapping Traffic Shaping Example #5 Set CoS Trust Mode of an InterfaceExample #1 traffic-shape Netgear 7000 Series Managed Switch Administration Guide Chapter Differentiated Services Differentiated Services Netgear Switch Config#diffserv DiffServ for VoIP Configuration Example Netgear 7000 Series Managed Switch Administration Guide Following example configures DiffServ VoIP support Chapter Igmp Snooping Example #1 Enable Igmp SnoopingExample #3 show mac-address-table igmpsnooping Example #2 show igmpsnoopingChapter Port Security Operation Example #2 show port security on a specific interface Example #3 Config port securityExample #1 show port security 11-4 Port Security Chapter Traceroute 12-2 Traceroute Considerations Chapter Configuration ScriptingExample #2 script list and script delete Example #3 script apply running-config.scrExample #1 script Example #5 Upload a Configuration Script Example #4 Creating a Configuration Script13-4 Configuration Scripting Chapter Outbound Telnet Example #2 show telnet Example #1 show networkExample #3 transport output telnet Example #4 session-limit and session-timeout14-4 Outbound Telnet Port Mirroring Example #3 show port interface Example #1 show monitor sessionExample #2 show port all Port, and what is enabled or disabled on the port Example #4 Config monitor session 1 modeExample #6 Interface port security Example #5 Config monitor session 1 source interfaceExample #1 show sntp Simple Network Time Protocol SntpExample #3 show sntp server Example #4 Configure SntpExample #2 show sntp client Simple Network Time Protocol Sntp 16-3 16-4 Simple Network Time Protocol Sntp Chapter Pre-Login Banner Transfer the file from the PC to the switch using Tftp Persistent Log Files Chapter SyslogInterpreting Log Files Example #2 show logging buffered Example #1 show loggingExample 4 show logging hosts Example #3 show logging traplogsExample #5 logging port configuration 18-6 Syslog

Related manuals

Manual 2 pages 6.29 Kb