NETGEAR MS510TXPP 8 Port Gigabit PoE Managed Switch User Manual
Page 286
Smart Managed Pro Switches MS510TX and MS510TXPP
Manage Device Security
User Manual
286
•
Logging
. If you select the
Deny
radio button, you can enable logging for the ACL by
selecting the
Enable
radio button. (Logging is subject to resource availability in the
device.)
If the access list trap flag is also enabled, periodic traps are generated, indicating the
number of times this rule was evoked during the report interval. A fixed five-minute
report interval is used for the switch. A trap is not issued if the ACL rule hit count is
zero for the current interval.
•
Match Every
. Select whether all packet must match the selected IPv6 ACL rule:
-
Disable
. Not all packets need to match the selected IPv6 ACL rule. You can
configure other match criteria on the page.
-
Enable
. All packets must match the selected IPv6 ACL rule and are either
permitted or denied. In this case, you cannot configure other match criteria on the
page.
•
Protocol Type
. Specify the IPv6 protocol type in one of the following ways:
-
From the
Protocol Type
menu, select
IPv6
,
ICMPv6
,
TCP
, or
UDP
.
-
From the
Protocol Type
menu, select
Other
, and in the associated field, specify
an integer ranging from 0 to 255. This number represents the IPv6 protocol.
•
Source Prefix
and
Prefix Length
. In the
Source Prefix
field and
Prefix Length
field,
enter the IPv6 prefix combined with the IPv6 prefix length of the network or host from
which the packet is being sent. The valid range for the prefix length is 0–128.
•
Source L4 port
. The options are available only when the protocol is set to TCP or UDP.
Use the source L4 port option to specify relevant matching conditions for L4 port
numbers in the IPv6 ACL rule.
The source port protocols are
domain
,
echo
,
ftp
,
ftpdata
,
http
,
smtp
,
snmp
,
telnet
,
tftp
, and
www
. Each of these values translates into its equivalent port number.
Select
Other
from the menu to enter a port number from 0 to 65535.
•
Destination Prefix
and
Prefix Length
. In the
Destination Prefix
field and
Prefix
Length
field, enter the IPv6 prefix combined with the IPv6 prefix length of the network
or host to which the packet is being sent. The valid range for the prefix length is
0–128.
•
Destination L4 port
. The options are available only when the protocol is set to TCP or
UDP. Use the source L4 port option to specify relevant matching conditions for L4 port
numbers in the IPv6 ACL rule.
The source port protocols are
domain
,
echo
,
ftp
,
ftpdata
,
http
,
smtp
,
snmp
,
telnet
,
tftp
, and
www
. Each of these values translates into its equivalent port number.
Select
Other
from the menu to enter a port number from 0 to 65535.
•
IPv6 DSCP Service
. Specify the IP DiffServ Code Point (DSCP) field. This is an
optional configuration.
Select one of the IP DiffServ Code Point (DSCP) keywords from the menu. The DSCP
is defined as the high-order 6 bits of the service type octet in the IP header. To specify