44
Chapter 5: Using the Web-based Utility for Configuration
ACL Tab - IP Based ACL
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Packet. Displays the amount of packets measured for the particular 802.1x statistic.
ACL Tab - IP Based ACLThe IP Based ACL (Access Control List) screen contains information for defining IP Based ACLs. Access Control
Lists (ACL) provide packet filtering for IP frames (based on address, protocol, Layer 4 protocol port number or TCP
control code) or any frames (based on MAC address or Ethernet type). To filter incoming packets, first create an
access list, add the required rules, specify a mask to modify the precedence in which the rules are checked, and
then bind the list to a specific port.
Targe t. Select the New ACL Name radio button and enter an ACL name in the text field provided (with up to 16
characters). Or to add rules to an existing ACL, select ACL Name and select an ACL from the dropdown menu.
ACL Name. Displays the user-defined IP based ACLs.
New ACL Name. Define a new user-defined IP based ACL, the name cannot include spaces.
Action. Indicates the action assigned to the packet matching the ACL. Packets are forwarded or dropped. In
addition, the port can be shut down, a trap can be sent to the network administrator, or a packet assigned rate
limiting restrictions for forwarding. The options are as follows:
•Permit. Forwards packets which meet the ACL criteria.
•Deny. Drops packets which meet the ACL criteria.
•Shutdown. Drops packet that meets the ACL criteria, and disables the port to which the packet was
addressed. Ports are reactivated from the Port Management screen.
Protocol. Creates an ACE (Access Control Event) based on a specific protocol.
•Select from List. Selects from a protocols list on which ACE can be based. The possible field values are:
•Any. Matches the protocol to any protocol.
•EIGRP. Indicates that the Enhanced Interior Gateway Routing Protocol (EIGRP) is used to classify network
flows.
•ICMP. Indicates that the Internet Control Message Protocol (ICMP) is used to classify network flows.
•IGMP. Indicates that the Internet Group Management Protocol (IGMP) is used to classify network flows.
•TCP. Indicates that the Transmission Control Protocol is used to classify network flows.
Figure 5-25: ACL - IP Based ACL