Netgear XS728T – ProSAFE® 10 Gigabit Smart Managed Switch Guia Do Administrador
Security
141
XS728T ProSAFE 28-Port 10-Gigabit L2+ Smart Switch
The following table describes the information displayed in the MAC Binding Table screen.
2.
To delete a MAC ACL-to-interface binding, select the check box next to the interface and
click Delete.
IP ACL
IP ACLs allow network managers to define classification actions and rules for specific ingress
ports. Packets can be filtered on ingress (inbound) ports only. If the filter rules match, some
actions can be taken, including dropping the packet or disabling the port. For example, a
network administrator defines an ACL rule that says port number 20 can receive TCP
packets. However, if a UDP packet is received, the packet is dropped.
ports. Packets can be filtered on ingress (inbound) ports only. If the filter rules match, some
actions can be taken, including dropping the packet or disabling the port. For example, a
network administrator defines an ACL rule that says port number 20 can receive TCP
packets. However, if a UDP packet is received, the packet is dropped.
ACLs are composed of access control entries (ACE), or rules, that consist of the filters that
determine traffic classifications.
Use the IP ACL screen to add or remove IP-based ACLs.
To configure an IP ACL:
1.
Select Security > ACL > Advanced > IP ACL.
2.
In the IP ACL ID field, specify the ACL ID. The ID is an integer in one of the following
ranges:
•
1–99. Creates an IP standard ACL, which allows you to permit or deny traffic from a
source IP address.
source IP address.
•
100–199. Creates an IP extended ACL, which allows you to permit or deny specific
types of layer 3 or layer 4 traffic from a source IP address to a destination IP address.
This type of ACL provides more granularity and filtering capabilities than the standard
IP ACL.
types of layer 3 or layer 4 traffic from a source IP address to a destination IP address.
This type of ACL provides more granularity and filtering capabilities than the standard
IP ACL.
Each configured ACL displays the following information:
•
Rules. Displays the number of rules currently configured for the IP ACL.
•
Type. Identifies the ACL as either a standard or extended IP ACL.
3.
Click Add.
Field
Description
Interface
The interface to which the MAC ACL is bound.
Direction
The packet filtering direction for the ACL. The only valid direction is
Inbound, which means the MAC ACL rules are applied to traffic entering
the port.
Inbound, which means the MAC ACL rules are applied to traffic entering
the port.
ACL Type
The type of ACL assigned to the selected interface and direction.
ACL ID
The ACL name identifying the ACL assigned to the selected interface
and direction.
and direction.
Sequence Number
The sequence number signifying the order of the specified ACL relative
to other ACLs assigned to the selected interface and direction.
to other ACLs assigned to the selected interface and direction.