TP-Link TL-SG2428P | Jetstream 24 Port Gigabit Smart Managed PoE Switch | 24 PoE+ Ports @250W, 4 SFP Slots | Omada SDN Integrated | PoE Recovery | IPv6 | Static Routing | Limited Lifetime Protection

User Manual - Page 876

For TL-SG2428P.

PDF File Manual, 1146 pages, Download pdf file

Loading ...

Configuring ACL Configuration Example for ACL

User Guide 847

Figure 3-22 Binding the ACL to Port 1/0/1

9) Click to save the settings.

3.2.4 Using the CLI

1) Create an IP ACL.

Switch#configure

Switch(config)#access-list create 500 name marketing

2) Configure rule 1 to permit packets with source IP 10.10.70.0/24 and destination IP

10.10.80.0/24.

Switch(config)#access-list ip 500 rule 1 permit logging disable sip 10.10.70.0 sip-mask

255.255.255.0 dip 10.10.80.0 dmask 255.255.255.0

3) Configure rule 2 and Rule 3 to permit packets with source IP 10.10.70.0/24, and

destination port TCP 80 (http service port) or TCP 443 (https service port).

Switch(config)#access-list ip 500 rule 2 permit logging disable sip 10.10.70.0 sip-mask

255.255.255.0 protocol 6 d-port 80 d-port-mask ffff

Switch(config)#access-list ip 500 rule 3 permit logging disable sip 10.10.70.0 sip-mask

255.255.255.0 protocol 6 d-port 443 d-port-mask ffff

4) Configure rule 4 and rule 5 to permit packets with source IP 10.10.70.0/24, and

destination port TCP53 or UDP 53.

Switch(config)#access-list ip 500 rule 4 permit logging disable sip 10.10.70.0 sip-mask

255.255.255.0 protocol 6 d-port 53 d-port-mask ffff

Switch(config)#access-list ip 500 rule 5 permit logging disable sip 10.10.70.0 sip-amask

255.255.255.0 protocol 17 d-port 53 d-port-mask ffff

5) Configure rule 6 to deny packets with source IP 10.10.70.0/24.

Loading ...

File type: PDF

File name: 95697745_tl-sg3210xhp-m2.pdf

File size: 7.69 MB

File Language: English

Pages: 1146

Author: TP-Link

File created: 2020-11-03

Published: 2023-02-16

Updated: 2023-03-29