Netgear GS716Tv2 GS716Tv2/GS724Tv3 Software Admin Manual - Page 179

GS716Tv2 and GS724Tv3 Software Administration Manual Table 5-36. IP ACL Rule Configuration Fields (continued) Field Src IP Address Src IP Mask Src L4 Port Dst IP Address Dst IP Mask Description Requires a packet's source port IP address to match the address listed here. Enter an IP Address in the appropriate field using dotted-decimal notation. The address you enter is compared to a packet's source IP Address. Specifies the source IP address wildcard mask. Wild card masks determines which bits are used and which bits are ignored. A wild card mask of 255.255.255.255 indicates that no bit is important. A wildcard of 0.0.0.0 indicates that all of the bits are important. Wildcard masking for ACLs operates differently from a subnet mask. A wildcard mask is in essence the inverse of a subnet mask. With a subnet mask, the mask has ones (1's) in the bit positions that are used for the network address, and has zeros (0's) for the bit positions that are not used. In contrast, a wildcard mask has (0's) in a bit position that must be checked. A '1' in a bit position of the ACL mask indicates the corresponding bit can be ignored. This field is required when you configure a source IP address. Requires a packet's TCP/UDP source port to match the port listed here. Click Complete one of the following fields: • Source L4 Keyword: Select the desired L4 keyword from a list of source ports on which the rule can be based. • Source L4 Port Number: If the source L4 keyword is Other, enter a user-defined Port ID by which packets are matched to the rule. Requires a packet's destination port IP address to match the address listed here. Enter an IP Address in the appropriate field using dotteddecimal notation. The address you enter is compared to a packet's destination IP Address. Specify the IP Mask in dotted-decimal notation to be used with the Destination IP Address value. Managing Device Security v1.0, July 2009 5-53