24-Port 10/100/1000 Gigabit Switch with Webview and PoE
•OSPF. Matches the packet to the Open Shortest Path First (OSPF) protocol.
•UDP. Indicates that the User Datagram Protocol is used to classify network flows.
•Protocol ID To Match. Adds
TCP Flags. Filters packets by TCP flag. Filtered packets are either forwarded or dropped. Filtering packets by TCP flags increases packet control, which increases network security. The values that can be assigned are:
•Set. Enables filtering packets by selected flags.
•Unset. Disables filtering packets by selected flags.
•Don’t care. Indicates that selected packets do not influence the packet filtering process. The TCP Flags that can be selected are:
Urg. Indicates the packet is urgent.
Ack. Indicates the packet is acknowledged.
Psh. Indicates the packet is pushed.
Rst. Indicates the connection is dropped.
Syn. Indicates request to start a session.
Fin. Indicates request to close a session.
Source Port. Defines the TCP/UDP source port to which the ACE is matched. This field is active only if
Destination Port. Defines the TCP/UDP destination port. This field is active only if
Source IP Address. Matches the source port IP address to which packets are addressed to the ACE.
Wildcard Mask. Defines the source IP address wildcard mask. Wildcard masks specify which bits are used and which bits are ignored. A wild card mask of 255.255.255.255 indicates that no bit is important. A wildcard of
0.0.0.0indicates that all the bits are important. For example, if the source IP address 149.36.184.198 and the wildcard mask is 255.36.184.00, the first eight bits of the IP address are ignored, while the last eight bits are used.
Chapter 5: Using the | 45 |
ACL Tab - IP Based ACL