
C
HAPTER
7
| Security Measures
Access Control Lists
– 211 –
C
OMMAND
U
SAGE
The following restrictions apply to ACLs:
The maximum number of ACLs is 64.
The maximum number of rules per system is 512 rules.
An ACL can have up to 64 rules. However, due to resource restrictions,
the average number of rules bound to the ports should not exceed 20.
N
OTE
:
The CLI includes a control function which restricts access lists to only
extended rules, or permits both standard and extended rules. For a
detailed description of this feature, refer to the
command.
The default setting only permits extended rules, storing any standard rules
entered through the web or command line interface in extended rule
format.
S
ETTING
THE
ACL
N
AME
AND
T
YPE
Use the Security > ACL > Configuration page to designate the name and
type of an ACL.
CLI R
EFERENCES
"access-list ipv6" on page 657
P
ARAMETERS
These parameters are displayed:
ACL Name
– Name of the ACL. (Maximum length: 15 characters)
Type
– The following filter modes are supported:
IP Standard
: IPv4 ACL mode filters packets based on the source
IPv4 address.
IP Extended
: IPv4 ACL mode filters packets based on the source
or destination IPv4 address, as well as the protocol type and
protocol port number. If the “TCP” protocol is specified, then you
can also filter packets based on the TCP control code.
IPv6 Standard
: IPv6 ACL mode filters packets based on the source
IPv6 address.
IPv6 Extended
: IPv6 ACL mode filters packets based on the
source or destination IP address, as well as the DSCP traffic class.
MAC
– MAC ACL mode filters packets based on the source or
destination MAC address and the Ethernet frame type (RFC 1060).
Содержание DG-FS4528P
Страница 2: ......
Страница 4: ......
Страница 148: ...CHAPTER 5 Simple Network Management Protocol Configuring SNMPv3 Groups 148 ...
Страница 279: ...CHAPTER 8 Interface Configuration Showing Port or Trunk Statistics 279 Figure 130 Showing Port Statistics ...
Страница 289: ...CHAPTER 10 Address Table Settings Changing the Aging Time 289 4 Click Apply Figure 137 Setting the Address Aging Time ...
Страница 389: ...CHAPTER 17 VoIP Traffic Configuration Configuring Telephony OUI 389 ...
Страница 414: ...CHAPTER 18 Multicast Filtering Multicast VLAN Registration 414 Figure 216 Configuring Static MVR Receiver Group Members ...
Страница 515: ...CHAPTER 22 System Management Commands UPnP 515 TTL 20 Console ...
Страница 972: ......
Страница 973: ...DG FS4528P ...