EasyManuals Logo
Home>Cisco>Network Router>Catalyst 3560-X

Cisco Catalyst 3560-X User Manual

Cisco Catalyst 3560-X
1538 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #876 background imageLoading...
Page #876 background image
1-8
Catalyst 3750-X and 3560-X Switch Software Configuration Guide
OL-25303-03
Chapter 1 Configuring Network Security with ACLs
Configuring IPv4 ACLs
• Inbound and outbound rate limiting (except with QoS ACLs)
• Reflexive ACLs or dynamic ACLs (except for some specialized dynamic ACLs used by the switch
clustering feature)
• ACL logging for port ACLs and VLAN maps
These are the steps to use IP ACLs on the switch:
Step 1 Create an ACL by specifying an access list number or name and the access conditions.
Step 2 Apply the ACL to interfaces or terminal lines. You can also apply standard and extended IP ACLs to
VLAN maps.
These sections contain this configuration information:
• Creating Standard and Extended IPv4 ACLs, page 1-8
• Applying an IPv4 ACL to a Terminal Line, page 1-20
• Applying an IPv4 ACL to an Interface, page 1-21
• Hardware and Software Treatment of IP ACLs, page 1-23
• Troubleshooting ACLs, page 1-23
• IPv4 ACL Configuration Examples, page 1-24
Creating Standard and Extended IPv4 ACLs
This section describes IP ACLs. An ACL is a sequential collection of permit and deny conditions. One
by one, the switch tests packets against the conditions in an access list. The first match determines
whether the switch accepts or rejects the packet. Because the switch stops testing after the first match,
the order of the conditions is critical. If no conditions match, the switch denies the packet.
The software supports these types of ACLs or access lists for IPv4:
• Standard IP access lists use source addresses for matching operations.
• Extended IP access lists use source and destination addresses for matching operations and optional
protocol-type information for finer granularity of control.
These sections describe access lists and how to create them:
• Access List Numbers, page 1-9
• ACL Logging, page 1-9
• Smart Logging, page 1-10
• Creating a Numbered Standard ACL, page 1-10
• Creating a Numbered Extended ACL, page 1-11
• Resequencing ACEs in an ACL, page 1-16
• Creating Named Standard and Extended ACLs, page 1-16
• Using Time Ranges with ACLs, page 1-18
• Including Comments in ACLs, page 1-20

Table of Contents

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco Catalyst 3560-X and is the answer not in the manual?

Cisco Catalyst 3560-X Specifications

General IconGeneral
BrandCisco
ModelCatalyst 3560-X
CategoryNetwork Router
LanguageEnglish

Related product manuals