Netgear M4100-26G-POE 사용자 설명서

IP Access Control List (ACL) Commands

This section describes the commands you use to configure IP ACL settings. IP ACLs ensure 
that only authorized users have access to specific resources and block any unwarranted 
attempts to reach network resources. 

The following rules apply to IP ACLs:

Managed switch software does not support IP ACL configuration for IP packet fragments.

The maximum number of ACLs you can create is hardware-dependent. The limit applies 

to all ACLs, regardless of type.

The maximum number of rules per IP ACL is hardware-dependent.

Wildcard masking for ACLs operates differently from a subnet mask. A wildcard mask is 

in essence the inverse of a subnet mask. With a subnet mask, the mask has ones (1's) in 
the bit positions that are used for the network address, and has zeros (0's) for the bit 
positions that are not used. In contrast, a wildcard mask has (0’s) in a bit position that 
must be checked. A ‘1’ in a bit position of the ACL mask indicates the corresponding bit 
can be ignored. 

This command creates an IP access control list (ACL) that is identified by the access list 
number, which is 1-99 for standard ACLs or 100-199 for extended ACLs.

IP Standard ACL:

 

IP Extended ACL:

access-list <100-199> {deny | permit} {every | {{icmp | igmp | ip | 

 

Global Config

Global Config

<1-99> or <100-199>

Range 1–99 is the access list number for an IP standard ACL. 
Range 100–199 is the access list number for an IP extended ACL. 

{deny | permit}

Specifies whether the IP ACL rule permits or denies an action. 

every

Match every packet