Configuring ACLs

Configuring an IP ACL Mask - Web

Configure the mask to match the required rules in the IP ingress or egress ACLs. Set the mask to check for any source or destination address, a specific host address, or an address range.

Include other criteria to search for in the rules, such as a protocol type or one of the service types.

Or use a bitmask to search for specific protocol port(s) or TCP control code(s). Then click Add.

FIG. 80 Web - Configuring an IP based ACL

Configuring an IP ACL Mask - CLI

This shows that the entries in the mask override the precedence in which the rules are entered into the ACL. In the following example, packets with the source address 10.1.1.1 are dropped because the “deny 10.1.1.1 255.255.255.255” rule has the higher precedence according the “mask host any” entry.

Console(config)#access-list ip

standard A2

264

Console(config-std-acl)#permit

10.1.1.0 255.255.255.0

265

Console(config-std-acl)#deny 10.1.1.1 255.255.255.255

 

Console(config-std-acl)#exit

 

 

Console(config)#access-list ip

mask-precedence in

269

Console(config-ip-mask-acl)#mask host any

269

Console(config-ip-mask-acl)#mask 255.255.255.0 any

 

Console(config-ip-mask-acl)#

 

 

 

 

 

Configuring a MAC ACL Mask

This mask defines the fields to check in the packet header.

Command Usage

You must configure a mask for an ACL rule before you can bind it to a port.

Command Attributes

Command Attributes

Source/Destination Use “Any” to match any address, “Host” to specify the host address for a single

Address Type: node, or “MAC” to specify a range of addresses.

Options: Any, Host, MAC

Default: Any

Source/Destination Address of rule must match this bitmask.

Bitmask:

VID Bitmask:VLAN ID of rule must match this bitmask.

Ethernet Type Bitmask: Ethernet type of rule must match this bitmask.

Packet Format Mask: A packet format must be specified in the rule.

80

NXA-ENET24 - Software Management Guide

Page 99 Page 101
Page 100
Image 100
AMX NXA-ENET24 manual Configuring a MAC ACL Mask, Configuring an IP ACL Mask Web, Configuring an IP ACL Mask CLI
Page 99 Page 101

NXA-ENET24 specifications

The AMX NXA-ENET24 is a versatile and powerful networked control interface designed to meet the growing demands of modern AV systems. This network switch offers an exceptional combination of reliability, performance, and scalability, making it an ideal choice for professional environments such as conference rooms, educational facilities, and control rooms.

One of the key features of the NXA-ENET24 is its 24-port configuration, allowing for extensive connectivity options. Each port supports 10/100/1000 Mbps speeds, ensuring that high bandwidth applications are handled with ease. Additionally, the switch incorporates advanced auto-negotiation technology, which automatically configures the optimal speed and duplex mode for connected devices. This ensures seamless connectivity and minimizes the risk of network disruptions.

The NXA-ENET24 is designed with advanced management capabilities, including support for VLANs, which helps to segment network traffic for enhanced security and performance. Network administrators can easily create virtual local area networks to optimize traffic flow and reduce congestion. This feature is particularly beneficial in environments where multiple AV systems operate concurrently.

Another significant characteristic of the NXA-ENET24 is its support for Power over Ethernet, or PoE. This feature enables the switch to deliver electrical power alongside data through the network cables. As a result, devices such as IP cameras, VoIP phones, and wireless access points can be powered directly from the switch, simplifying deployment and reducing the need for additional power sources.

Monitoring and management of the switch are made easier through a user-friendly interface. The NXA-ENET24 supports SNMP for network management, allowing users to monitor performance metrics, configure settings, and receive alerts in case of issues. This level of oversight is crucial for maintaining the stability of AV systems in mission-critical applications.

Durability is another hallmark of the NXA-ENET24 design. The switch features a robust chassis that is engineered to withstand the rigors of professional use. With cooling mechanisms in place and a fanless design, the NXA-ENET24 operates quietly and efficiently, making it suitable for environments where noise is a concern.

In conclusion, the AMX NXA-ENET24 is a powerful, reliable, and feature-rich network switch that effectively supports modern AV applications. With its extensive connectivity options, advanced management capabilities, PoE support, and durable design, it is an excellent choice for integrators and organizations looking to optimize their network infrastructure.
Top Page Image Contents