Netgear GSM7248v1 GSM7224 Administration manual - Page 74

Configuring IP ACLs, Class of Service CoS 802.1p

Get Netgear GSM7248v1 - ProSafe 48 Port Layer 2 Gigabit L2 Ethernet Switch PDF manuals and user guides View all Netgear GSM7248v1 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 74 highlights

NETGEAR 7000 Series Managed Switch Administration Guide Version 6.0 • Destination MAC address with mask • VLAN ID (or range of IDs) • Class of Service (CoS) (802.1p) • Ethertype • L2 ACLs can apply to one or more interfaces • Multiple access lists can be applied to a single interface - sequence number determines the order of execution • You cannot configure a MAC ACL and an IP ACL on the same interface • You can assign packets to queues using the assign queue option • You can redirect packets using the redirect option Configuring IP ACLs IP ACLs classify for Layer 3. Each ACL is a set of up to ten rules applied to inbound traffic. Each rule specifies whether the contents of a given field should be used to permit or deny access to the network, and may apply to one or more of the following fields within a packet: • Source IP address • Destination IP address • Source Layer 4 port • Destination Layer 4 port • TOS byte • Protocol number Note that the order of the rules is important: when a packet matches multiple rules, the first rule takes precedence. Also, once you define an ACL for a given port, all traffic not specifically permitted by the ACL will be denied access. 9-2 Access Control Lists (ACLs) v1.0, Jan 2007

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
NETGEAR 7000
Series Managed Switch Administration Guide Version 6.0
9-2
Access Control Lists (ACLs)
v1.0, Jan 2007
Destination MAC address with mask
VLAN ID (or range of IDs)
Class of Service (CoS) (802.1p)
Ethertype
L2 ACLs can apply to one or more interfaces
Multiple access lists can be applied to a single interface - sequence number determines the
order of execution
You cannot configure a MAC ACL and an IP ACL on the same interface
You can assign packets to queues using the assign queue option
You can redirect packets using the redirect option
Configuring IP ACLs
IP ACLs classify for Layer 3.
Each ACL is a set of up to ten rules applied to inbound traffic. Each rule specifies whether the
contents of a given field should be used to permit or deny access to the network, and may apply to
one or more of the following fields within a packet:
Source IP address
Destination IP address
Source Layer 4 port
Destination Layer 4 port
TOS byte
Protocol number
Note that the order of the rules is important: when a packet matches multiple rules, the first rule
takes precedence. Also, once you define an ACL for a given port, all traffic not specifically
permitted by the ACL will be denied access.