![background image](http://html.mh-extra.com/html/smc-networks/6128l2/6128l2_management-manual_1300638414.webp)
C
OMMAND
L
INE
I
NTERFACE
4-114
The following restrictions apply to ACLs:
•
Each ACL can have up to 60 rules.
•
This switch supports ACLs for ingress filtering only. However, you can
only bind one IP ACL to any port for ingress filtering. In other words,
only one ACL can be bound to an interface - Ingress IP ACL.
The order in which active ACLs are checked is as follows:
1.
User-defined rules in the Ingress IP ACL for ingress ports.
2.
Explicit default rule (permit any any) in the ingress IP ACL for ingress
ports.
3.
If no explicit rule is matched, the implicit default is permit all.
IP ACLs
Table 4-33 Access Control List Commands
Command Groups
Function
Page
IP ACLs
Configure ACLs based on IP addresses, TCP/
UDP port number, protocol type, and TCP control
code
4-114
ACL Information
Display ACLs and associated rules; shows ACLs
assigned to each port
4-122
Table 4-34 IP ACL Commands
Command
Function
Mode
Page
access-list ip
Creates an IP ACL and enters
configuration mode for standard or
extended IP ACLs
GC
4-115
permit, deny
Filters packets matching a specified
source IP address
STD-ACL
4-116
permit, deny
Filters packets meeting the specified
criteria, including source and
destination IP address, TCP/UDP port
number, protocol type, and TCP
control code
EXT-ACL
4-117
Summary of Contents for 6128L2
Page 2: ......
Page 21: ...CONTENTS xvii Glossary Index ...
Page 22: ...CONTENTS xviii ...
Page 26: ...TABLES xxii ...
Page 40: ...INTRODUCTION 1 10 ...
Page 54: ...INITIAL CONFIGURATION 2 14 ...
Page 193: ...PORT CONFIGURATION 3 139 Figure 3 61 Displaying Etherlike and RMON Statistics ...
Page 257: ...QUALITY OF SERVICE 3 203 Figure 3 90 Configuring Policy Maps ...
Page 313: ...COMMAND GROUPS 4 13 PE Privileged Exec VC VLAN Database Configuration ...
Page 592: ...TROUBLESHOOTING B 4 ...
Page 605: ......