Assistance in the Protection from Un-
authorized Access
UM Basic Configuration L3P
Release
7.1
12/2011
6.8
Access Control Lists (ACL)
111
6.8.2 Description of IP-based ACLs
The device differentiates between standard and extended IP-based ACLs.
ACLs with an ID number (ACL ID)
1 to 99 are standard IP-based ACLs and
100 to 199 are extended IP-based ACLs.
Standard IP-based ACLs provide the following criteria for filtering:
IP source address with netmask
All data packets (match any)
Extended IP-based ACLs provide the following criteria for filtering:
All data packets (every)
Protocol number or protocol (IP, ICMP, IGMP, TCP, UDP)
IP source address with netmask or all IP source addresses (any)
Layer 4 protocol port number of the source (UDP port, TCP port)
IP destination address with netmask or all IP destination addresses (any)
Layer 4 protocol port number of the destination (UDP port, TCP port)
ToS field with mask
Assign queue
parameter
VLAN priority DSCP
00 CS0 (0)
11 CS1 (8)
2 2 CS2 (16)
3 3 CS3 (24)
4 4 CS4 (32)
5 5 CS5 (40)
6 6 CS6 (48)
7 7 CS7 (56)
Table 5: Assigning the assign queue parameters to the modified VLAN priority and to
the modified DSCP value
To Next Page
Loading...
Need help?
General
