beautypg.com

Mac acl sample configuration – NETGEAR AV Line M4250 GSM4210PX 8-Port Gigabit PoE+ Compliant Managed AV Switch with SFP (220W) User Manual

Page 769

background image

The switch allow ACLs to be bound to physical ports and LAGs. The switch supports
MAC ACLs and IP ACLs.

MAC ACL sample configuration

The following example shows how to create a MAC-based ACL that permits Ethernet
traffic from the Sales department on specified ports and denies all other traffic on those
ports.

1. On the MAC ACL page, create an ACL with the name Sales_ACL for the Sales

department of your network (see Configure a MAC ACL on page 653).
By default, this ACL is bound on the inbound direction, which means that the switch
examines traffic as it enters the port.

2. On the MAC Rules page, create a rule for the Sales_ACL with the following settings:

Sequence Number: 1

Action: Permit

Assign Queue ID: 0

Match Every: False

CoS: 0

Destination MAC: 01:02:1A:BC:DE:EF

Destination MAC Mask: 00:00:00:00:FF:FF

EtherType: User Value

Source MAC: 02:02:1A:BC:DE:EF

Source MAC Mask: 00:00:00:00:FF:FF

VLAN ID: 2

For more information about MAC ACL rules, see Configure MAC ACL rules on page
656.

3. On the MAC Binding Configuration page, assign the Sales_ACL to 6, 7, and 8, and

then click the Apply button. (See Configure MAC bindings on page 660.)
You can assign an optional sequence number to indicate the order of this access list
relative to other access lists if any are already assigned to this interface and direction.

4. The MAC Binding Table displays the interface and MAC ACL binding information.

(See Display or delete MAC ACL bindings in the MAC binding table on page 662.)

The ACL named Sales_ACL looks for Ethernet frames with destination and source MAC
addresses and MAC masks defined in the rule. Also, the frame must be tagged with
VLAN ID 2, which is the Sales department VLAN. The CoS value of the frame must be
0, which is the default value for Ethernet frames. Frames that match this criteria are

Main User Manual

769

Configuration Examples

AV Line of Fully Managed Switches M4250 Series Main User Manual

See also other documents in the category NETGEAR Video surveillance systems: