Chapter32 ACL Editor
Rules Windows
32-8
Cisco Router and Security Device Manager 2.5 User’s Guide
OL-4015-12
Type
Select the type of rule you are adding. Standard rules let you have the router
examine the source host or network in the packet. Extended rules let you have the
router examine the source host or network, the destination host or network, and
the type of traffic that the packet contains.
Description
You can provide a description of the rule in this field. The description must be less
than 100 characters long.
Rule Entry List
This list shows the entries that make up the rule. You can add, edit, and delete
entries. You can also reorder them to change the order in which they are evaluated.
Observe the following guidelines when creating rule entries:
There must be at least one permit statement in the list; otherwise, all traffic
will be denied.
A permit all or deny all entry in the list must be the last entry.
Standard entries and extended entries cannot be mixed in the same rule.
No duplicate entries can exist in the same rule.
Clone
Click this button to use the selected entry as a template for a new entry. This
feature can save you time, and help reduce errors. For examp le, if you want to
create a number of extended rule entries with the same source and destination, but
different protocols or ports, you could create the first one using the Add button.
After creating the first entry, you could copy it using Clone, and change the
protocol field or port field to create a new entry.
Interface Association
Click the Associate button to apply the rule to an interface.