Netgear M5300-28G-POE+ (GSM7228PSv1h2) - 12-Port Managed Gigabit Switch Ratgeber Für Administratoren
Chapter 10. ACLs
|
155
ProSafe Managed Switch
6.
Create ACL 101 to deny all traffic that has the destination IP address 192.168.24.0/24.
7.
Create ACL 102 to deny all traffic that has the destination IP address 192.168.48.0/24.
8.
Create ACL 103 to permit all other traffic.
9.
Deny all traffic with the destination IP address 192.168.48.0/24, and permit all other traffic.
10.
Deny all traffic with the destination IP address 192.168.24.0/24, and permit all other traffic.
Web Interface: Configure One-Way Access Using a TCP Flag in
an ACL
an ACL
1.
Create VLAN 24 with IP address 192.168.24.1.
(Netgear Switch) (Config)#access-list 101 deny ip any 192.168.24.0 0.0.0.255
(Netgear Switch) (Config)#access-list 102 deny ip any 192.168.48.0 0.0.0.255
(Netgear Switch) (Config)#access-list 103 permit ip any any
(Netgear Switch) (Config)#interface 1/0/24
(Netgear Switch) (Interface 1/0/24)#ip access-group 102 in 1
(Netgear Switch) (Interface 1/0/24)#ip access-group 103 in 2
(Netgear Switch) (Interface 1/0/24)#exit
(Netgear Switch) (Config)#interface 1/0/48
(Netgear Switch) (Interface 1/0/48)#ip access-group 101 in 1
(Netgear Switch) (Interface 1/0/48)#ip access-group 103 in 2
(Netgear Switch) (Interface 1/0/48)#exit