Cabletron Systems HSIM-W6 User Manual

Chapter 6: HSIM-W6 Configuration with QuickSET

90

HSIM-W6 User’s Guide

The ACL option allows you to create access control lists that restrict traffic to, from, or between
specific IP hosts, subnets, or networks. You can configure access control restrictions based on the
following:

•

The source, destination, or a combination of the source and destination address of a packet.

•

The upper layer protocol type of a packet such as TCP, UDP, ICMP, or all TCP/IP protocols.

•

The TCP or UDP port number of a packet.

When an IP Access Control List is enabled on a router port, each packet to be forwarded out a port
is first checked against that list. If the address(es) of a packet match(es) the address(es) in the first
filter in the list, the packet is permitted or denied as specified by that filter. If there is no match, the
packet is checked against the second filter, and so on, until a match is found, or until the packet has
been checked against all of the filters in the list. If the packet does not match any of the filters, then
the packet is permitted to pass through the port.

Figure 32

Firewall Configuration Window