beautypg.com

Basic ip acl sample configuration – NETGEAR AV Line M4250 GSM4210PX 8-Port Gigabit PoE+ Compliant Managed AV Switch with SFP (220W) User Manual

Page 770

background image

permitted on interfaces 6, 7, and 8 and are assigned to the hardware egress queue 0,
which is the default queue. All other traffic is explicitly denied on these interfaces. To
allow additional traffic to enter these ports, you must add a new Permit rule with the
desired match criteria and bind the rule to interfaces 6, 7, and 8.

Basic IP ACL sample configuration

The following example shows how to create an IP-based ACL that prevents any IP traffic
from the Finance department from being allowed on the ports that are associated with
other departments. Traffic from the Finance department is identified by each packet’s
network IP address.

1. On the IP ACL page, create a new IP ACL with an IP ACL ID of 1. (See Configure a

basic or extended IPv4 ACL on page 663.)

2. On the IP Rules page, create a rule for IP ACL 1 with the following settings:

• Sequence Number: 1
• Action: Deny
• Assign Queue ID: 0 (optional: 0 is the default value)
• Match Every: False
• Source IP Address: 192.168.187.0
• Source IP Mask: 255.255.0

For additional information about IP ACL rules, see Configure rules for a basic IP ACL
on page 666.

3. Click the Add button.

4. On the IP Rules page, create a second rule for IP ACL 1 with the following settings:

• Sequence Number: 2
• Action: Permit
• Match Every: True

5. Click the Add button.

6. On the IP Binding Configuration page, assign ACL ID 1 to ports 2, 3, and 4, and

assign a sequence number of 1. (See Configure IP ACL interface bindings on page
688.)
By default, this IP ACL is bound on the inbound direction, so it examines traffic as it
enters the switch.

7. Click the Apply button.

8. On the IP Binding Table page, you can view the interfaces and IP ACL binding

information. (See Display or delete IP ACL bindings in the IP ACL binding table on
page 690.)

Main User Manual

770

Configuration Examples

AV Line of Fully Managed Switches M4250 Series Main User Manual

See also other documents in the category NETGEAR Video surveillance systems: