Loading ...
Loading ...
Loading ...
Configuring ACL Configuration Example for ACL
User Guide 841
3.2.2 Configuration Scheme
To meet the requirements above, you can set up packet filtering by creating an IP ACL and
configuring rules for it.
â– ACL Configuration
Create an IP ACL and configure the following rules for it:
â– Configure a permit rule to match packets with source IP address 10.10.70.0/24, and
destination IP address 10.10.80.0/24. This rule allows the Marketing department to
access internal network servers from intranet.
â– Configure four permit rules to match the packets with source IP address 10.10.70.0/24,
and destination ports TCP 80, TCP 443 and TCP/UDP 53. These allow the Marketing
department to visit http and https websites on the internet.
The switch matches the packets with the rules in order, starting with Rule 1. If a packet
matches a rule, the switch stops the matching process and initiates the action defined in
the rule.
â– Binding Configuration
Bind the IP ACL to port 1/0/1 so that the ACL rules will apply to the Marketing department
only.
Demonstrated with T1600G-28TS, the following sections explain the configuration
procedure in two ways: using the GUI and using the CLI.
3.2.3 Using the GUI
1) Choose the menu SECURITY > ACL > ACL Config and click to load the following
page. Then create an IP ACL for the marketing department.
Figure 3-13 Creating an IP ACL
2) Click Edit ACL in the Operation column.
Loading ...
Loading ...
Loading ...