NETGEAR M4350-24F4V 24-Port 10G SFP+ Managed AV Network Switch User Manual
Page 815
-
Less Than: The IP ACL rule matches if the Layer 4 source port number is
a lower number than the specified port number or port key.
-
Greater Than: The IP ACL rule matches if the Layer 4 source port number
is a higher number than the specified port number or port key.
-
Range: If you select the Range radio button, the IP ACL rule matches only if
the Layer 4 source port number is within the specified port range. The starting
port, ending port, and all ports in between are a part of the Layer 4 port range.
The Start Port and End Port fields identify the first and last ports that are part
of the port range. The values can range from 0 to 65535.
You can either enter the port range yourself or select one of the following
protocols from the menu:
-
The source IP TCP port protocols are Domain, Echo, FTP, FTP data,
www-http, SMTP, Telnet, POP2, POP3, and BGP.
-
The source IP UDP port protocols are Domain, Echo, SNMP, NTP, RIP,
Time, Who, and TFTP.
Each of these values translates into its equivalent port number, which is used
as both the start and end of the port range. Select Other from the menu to
enter a port number. If you select Other from the menu but leave the field
blank, it means any.
The wildcard mask determines which bits are used and which bits are ignored.
A wildcard mask of 0.0.0.0 indicates that none of the bits are important. A
wildcard of 255.255.255.255 indicates that all of the bits are important.
•
Dst: In the Dst field, enter a destination IP address, using dotted-decimal notation,
to be compared to a packet’s destination IP address as a match criteria for the
selected IP ACL rule:
-
If you select the IP Address radio button, enter an IP address with a relevant
wildcard mask to apply this criteria. If this field is left empty, it means any.
-
If you select the Host radio button, the wildcard mask is configured as 0.0.0.0.
If this field is left empty, it means any.
The wildcard mask determines which bits are used and which bits are ignored.
A wildcard mask of 0.0.0.0 indicates that none of the bits are important. A
wildcard of 255.255.255.255 indicates that all of the bits are important.
•
Dst L4: The options are available only if the selection from the Protocol Type
menu is TCP or UDP. Use the destination L4 port option to specify relevant
matching conditions for L4 port numbers in the extended ACL rule.
You can select either the Port radio button or the Range radio button:
-
Port: If you select the Port radio button, you can either enter the port number
yourself or select one of the following protocols from the menu.
Main User Manual
815
Manage Switch Security
Fully Managed Switches M4350 Series Main User Manual