Binding a Port to an Access Control List 15

Binding a Port to an Access Control List

After configuring the Access Control Lists (ACL), you should bind them to the ports that need to filter traffic. You can only bind a port to one ACL for each basic type – IPv4 ingress, MAC ingress, and IPv6 ingress.

Command Usage

• This switch supports ACLs for ingress filtering only.

Command Attributes

Port – Fixed port, SFP module, or XFP module. (Range: 1-24/48)

IP – Specifies the IPv4 ACL to bind to a port.

MAC – Specifies the MAC ACL to bind to a port.

IPv6 – Specifies the IPv6 ACL to bind to a port.

IN – ACL for ingress packets.

ACL Name – Name of the ACL.

Web – Click Security, ACL, Port Binding. Mark the Enable field for the port you want to bind to an ACL for ingress traffic, select the required ACL from the drop-down list, then click Apply.

Figure 15-7 ACL Port Binding

CLI – This examples assigns an IP and MAC ingress ACL to port 1, and an IP ingress ACL to port 2.

Console(config)#interface ethernet

1/1

 

45-1

Console(config-if)#ip access-group

tom

in

44-6

Console(config-if)#mac access-group jerry in

44-15

Console(config-if)#exit

Console(config)#interface ethernet 1/2

Console(config-if)#ip access-group tom in

Console(config-if)#

15-11

Page 153
Image 153
Accton Technology ES4548D Binding a Port to an Access Control List, This switch supports ACLs for ingress filtering only