Chapter32 ACL Editor
Rules Windows
32-12
Cisco Router and Security Device Manager 2.5 User’s Guide
OL-4015-12
Note Any traffic that does not match the criteria in one of the rule entries you create is
implicitly denied. To ensure that traffic you do not intend to deny is permitted, you
must append explicit permit entries to the that rule you are configuring.
Action
Select the action you want the router to take when a packet matches the criteria in
the rule entry. The choices are Permit and Deny. What Permit and Deny do
depends on the type of rule in which they are used. In Cisco SDM, stan dard rule
entries can be used in access rules, NAT rules, and in access lists associated with
route maps. Click Meanings of the Permit and Deny Keywords to learn more
about the action of Permit and the action of Deny in the context of a specific type
of rule.
Source Host/Network
The source IP address criteria that the traffic must match. The fields in this area
of the window change, based on the value of the Type field.
Type
Select one of the following:
A Network. Select if you want the action to apply to all the IP addresses in a
network.
A Host Name or IP Address. Select if you want the action to apply to a
specificc host or IP address.
Any IP address. Select if you want the action to apply to any IP a ddress.
IP Address
If you selected A Network or if you selected A Host Name or IP address, enter
the IP address in this field. If the address you enter is a network address, enter a
wildcard mask to specify the parts of the network address that must be matched.