8- and 24-Port Gigabit L2 Managed Power-over-Ethernet (PoE) Switches
724-746-5500 | blackbox.com
78
when a trap occurs. If all public traps are disabled, no public trap message will be sent. The Enterprise (no. 6) trap is classified as a
private trap, and is listed in the Trap Alarm Configuration function folder.
Default for all public traps: Enable.
4.10 ACL
The LPB4008A switch access control list (ACL) is probably the most commonly used object in the IOS. It is used for packet filtering but
also for selecting types of traffic to be analyzed, forwarded, or influenced in some way.
The ACLs are divided into EtherTypes. IPv4, ARP protocol, MAC, and VLAN parameters, etc. Here we will just go over the standard
and extended access lists for TCP/IP. As you create ACEs for ingress classification, you can assign a policy for each port. The policy
number is 1–8; however, each policy can be applied to any port. This makes it very easy to determine what type of ACL policy you will
be working with.
4.10.1 Ports
Function name: ACL Port Configuration
Function description: The switch ACL function supports up to 128 Access Control Entries (ACEs), using 128 shared ACEs for ingress
classification. You can create an ACE and assign this ACE for each port with <Any>, assign this ACE for a policy, or assign this ACE
for a port. There are 8 policies, each port can select one of policy, then decides which of the following actions would take according
to the packet’s IPv4, EtherType, ARP Protocol, MAC Parameters, and VLAN parameters:
Packet Deny or Permit
Rate Limiter (Unit: pps)
Port Copy (1–8)
Figure 4-62. ACL ports configuration.
Parameter description:
Port #: Port number: 1–8
Policy ID: Policy ID range: 1–8
Action: Permit or Deny forwarding the met ACL packets
Rate Limiter ID: Disabled: Disable Rate Limitation
Rate Limiter ID Range: 1~16. To select one of rate limiter ID for this port, it will limit met ACL packets by rate limiter ID configuration.
