Cisco SRW2016 User Guide - Page 42

ACL > MAC Based ACL

Get Cisco SRW2016 - Small Business Managed Switch PDF manuals and user guides
UPC - 745883562435
View all Cisco SRW2016 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 42 highlights

Chapter 5 Advanced Configuration Source Port Defines the TCP/UDP source port to which the ACE is matched. This field is active only if 800/6-TCP or 800/17-UDP are selected in the Select from List drop-down menu. The possible field range is 0-65,535. Destination Port Defines the TCP/UDP destination port. This field is active only if 800/6-TCP or 800/17-UDP are selected in the Select from List drop-down menu. The possible field range is 0-65,535. Source IP Address Matches the source port IP address to which packets are addressed to the ACE. •• Wildcard Mask Defines the source IP address wildcard mask. Wildcard masks specify which bits are used and which bits are ignored. A wild card mask of 255.255.255.255 indicates that no bit is important. A wildcard of 0.0.0.0 indicates that all the bits are important. For example, if the source IP address 149.36.184.198 and the wildcard mask is 255.36.184.00, the first eight bits of the IP address are ignored, while the last eight bits are used. Dest. IP Address Matches the destination port IP address to which packets are addressed to the ACE. •• Wildcard Mask Defines the destination IP address wildcard mask. Match DSCP Matches the packet DSCP value to the ACE. Either the DSCP value or the IP Precedence value is used to match packets to ACLs. The possible field range is 0-63. Match IP Precedence Matches the packet IP Precedence value to the ACE. Either the DSCP value or the IP Precedence value is used to match packets to ACLs. The possible field range is 0-7. The Add to List button adds the configured IP Based ACLs to the IP Based ACL Table at the bottom of the screen. WebView Switches ACL > MAC Based ACL The MAC Based ACL screen allows a MAC based ACL to be defined. ACEs can be added only if the ACL is not bound to an interface. ACL > Mac Based ACL ACL Name Displays the user-defined MAC based ACLs. New ACL Name Specifies a new user-defined MAC based ACL name, the name cannot include spaces. Delete ACL Deletes the selected ACL. Action Indicates the ACL forwarding action. Possible field values are: •• Permit Forwards packets which meet the ACL criteria. •• Deny Drops packets which meet the ACL criteria. •• Shutdown Drops packet that meet the ACL criteria, and disables the port to which the packet was addressed. Source MAC Address Matches the source MAC address to which packets are addressed to the ACE. •• Wildcard Mask Defines the source IP address wildcard mask. Wildcard masks specify which bits are used and which bits are ignored. A wild card mask of 255.255.255.255 indicates that no bit is important. A wildcard of 0.0.0.0 indicates that all the bits are important. For example, if the source IP address 149.36.184.198 and the wildcard mask is 255.36.184.00, the first eight bits of the IP address are ignored, while the last eight bits are used. Dest. MAC Address Matches the destination MAC address to which packets are addressed to the ACE. •• Wildcard Mask Defines the destination IP address wildcard mask. VLAN ID Matches the packet's VLAN ID to the ACE. The possible field values are 2-4094. 35

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
Chapter 5
Advanced Configuration
35
WebView Switches
Source Port
Defines the TCP/UDP source port to which
the ACE is matched. This field is active only if 800/6-TCP or
800/17-UDP are selected in the
Select from List
drop-down
menu. The possible field range is
0–65,535
.
Destination
Port
Defines
the
TCP/UDP
destination
port. This field is active only if 800/6-TCP or 800/17-UDP
are selected in the
Select from List
drop-down menu. The
possible field range is
0–65,535
.
Source IP Address
Matches the source port IP address to
which packets are addressed to the ACE.
Wildcard
Mask
Defines
the
source
IP
address
wildcard mask. Wildcard masks specify which bits
are used and which bits are ignored. A wild card
mask of
255.255.255.255
indicates that no bit is
important. A wildcard of
0.0.0.0
indicates that all
the bits are important. For example, if the source IP
address
149.36.184.198
and the wildcard mask is
255.36.184.00
, the first eight bits of the IP address are
ignored, while the last eight bits are used.
Dest. IP Address
Matches the destination port IP address
to which packets are addressed to the ACE.
Wildcard Mask
Defines the destination IP address
wildcard mask.
Match DSCP
Matches the packet DSCP value to the ACE.
Either the DSCP value or the IP Precedence value is used to
match packets to ACLs. The possible field range is
0–63
.
Match IP Precedence
Matches the packet IP Precedence
value to the ACE. Either the DSCP value or the IP Precedence
value is used to match packets to ACLs. The possible field
range is
0–7
.
The
Add to List
button adds the configured IP Based ACLs
to the IP Based ACL Table at the bottom of the screen.
ACL > MAC Based ACL
The
MAC Based ACL
screen allows a MAC based ACL to be
defined. ACEs can be added only if the ACL is not bound
to an interface.
ACL > Mac Based ACL
ACL Name
Displays the user-defined MAC based ACLs.
New ACL Name
Specifies a new user-defined MAC based
ACL name, the name cannot include spaces.
Delete ACL
Deletes the selected ACL.
Action
Indicates the ACL forwarding action. Possible field
values are:
Permit
Forwards
packets
which
meet
the
ACL
criteria.
Deny
Drops packets which meet the ACL criteria.
Shutdown
Drops packet that meet the ACL criteria,
and disables the port to which the packet was
addressed.
Source MAC Address
Matches the source MAC address
to which packets are addressed to the ACE.
Wildcard
Mask
Defines
the
source
IP
address
wildcard mask. Wildcard masks specify which bits
are used and which bits are ignored. A wild card
mask of
255.255.255.255
indicates that no bit is
important. A wildcard of
0.0.0.0
indicates that all
the bits are important. For example, if the source IP
address
149.36.184.198
and the wildcard mask is
255.36.184.00
, the first eight bits of the IP address are
ignored, while the last eight bits are used.
Dest.
MAC
Address
Matches
the
destination
MAC
address to which packets are addressed to the ACE.
Wildcard Mask
Defines the destination IP address
wildcard mask.
VLAN ID
Matches the packet’s VLAN ID to the ACE. The
possible field values are
2–4094
.