beautypg.com

NETGEAR AV Line M4250 GSM4210PX 8-Port Gigabit PoE+ Compliant Managed AV Switch with SFP (220W) User Manual

Page 684

background image

• Interface: If you select the Permit radio button, use either a mirror interface or a

redirect interface:

Select the Mirror Interface radio button and use the menu to specify the
egress interface to which the matching traffic stream is copied, in addition to
being forwarded normally by the device.

• Select the Redirect Interface radio button and use the menu to specify the

egress interface to which the matching traffic stream is forced, bypassing any
forwarding decision normally performed by the device.

• Match Every: Select whether all packet must match the selected IPv6 ACL rule:

False: Not all packets need to match the selected IPv6 ACL rule. You can
configure other match criteria on the page.

True: All packets must match the selected IPv6 ACL rule and are either
permitted or denied. In this case, you cannot configure other match criteria
on the page.

• Protocol Type: Specify the IPv6 protocol type in one of the following ways:

From the Protocol Type menu, select IPv6, ICMPv6, TCP, or UDP.

From the Protocol Type menu, select Other, and in the associated field, specify
an integer ranging from 0 to 255. This number represents the IPv6 protocol.

• TCP Flag: If you select TCP from the Protocol Type menu, for each TCP flag, you

can specify whether or not a packet’s TCP flag must match. The TCP flag values
are URG, ACK, PSH, RST, SYN, and FIN. You can set each TCP flag separately to
one of the following options:

Ignore: The packet’s TCP flag is ignored. This is the default setting.

Set: A packet matches this ACL rule if the TCP flag in this packet is set.

Clear: A packet matches this ACL rule if the TCP flag in this packet is not set.

Note: If the RST and ACK flags are set, the option Established is available,
indicating that a match occurs if either the RST- or ACK-specified bits are set in
the packet’s header.

• Src: In the Src field, enter a source IPv6 address or source IPv6 address range to

be compared to a packet’s source IPv6 address as a match criterion for the selected
IPv6 ACL rule:

If you select the IPv6 Address radio button, enter an IPv6 address or IPv6
range to apply this criteria. If this field is left empty, it means any.

Main User Manual

684

Manage Switch Security

AV Line of Fully Managed Switches M4250 Series Main User Manual

See also other documents in the category NETGEAR Video surveillance systems: