beautypg.com

Access-list, Acl sequence numbers, Acl types – Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual

Page 2193

background image

Appendix B: Glossary

Software Reference for x310 Series Switches

C613-50046-01 REV A

AlliedWare Plus

TM

Operating System - Version 5.4.4C

B.3

There are two types of servers that can be used:

Local user database.

RADIUS

servers.

When 802.1X authentication, MAC authentication and Web-authentication are configured
to run simultaneously on a switch port this is called tri-authentication.

For more information see

Chapter 44, AAA Introduction and Configuration

. For a

configuration example see

“Configuring AAA Login Authentication” on page 44.5

. For

sample 802.1x, MAC authentication and Web-authentication configuration scripts see

“Sample Authentication Configurations” on page 44.7

.

Access-list

See

ACL

.

ACL

Access Control List. An ACL is one filter, or a sequence of filters, that are applied to an
interface to either block, pass, or when using QoS, apply priority to, packets that match
the filter definitions. ACLs are used to restrict network access by hosts and devices and to
limit network traffic. See

ACL sequence numbers

and

ACL types

.

For more information see

Chapter 33, Access Control Lists Introduction

.

ACL sequence numbers

To help manage

ACLs

you can apply sequence numbers to filters. This allows you to

remove filters from named and numbered ACLs without having to reconfigure an ACL. The
ability to add sequence numbers to filters simplifies updates through the ability to
position a filter within an ACL. When you add a new filter, you can specify a sequence
number to position the filter in the ACL and you can also remove a current filter in an ACL
by specifying a sequence number.

For more information see

“ACL Filter Sequence Numbers” on page 33.14

.

ACL types

ACLs

are separated into two different types, software ACLs and hardware ACLs.

Hardware ACLs are applied directly to an interface, or are used for QoS

Classifications

.

They can be either named, or can use the following numeric ranges:

3000-3699 for Hardware IP ACLs

4000-4699 for Hardware MAC ACLs

For more information see

“Defining Hardware IP ACLs” on page 33.6

and

“Defining

Hardware MAC ACLs” on page 33.5

.

Software ACLs can be either named ACLs, using the standard or extended keyword
followed by a text string, or they can use the following numeric ranges:

1-99

100-199

1300-1999

2000-2699

Software ACLs are used in features such as SNMP, IGMP, BGP and OSPF.

See also other documents in the category Allied Telesis Computer hardware: