beautypg.com

NETGEAR MS510TXPP 8 Port Gigabit PoE Managed Switch User Manual

Page 286

background image

Smart Managed Pro Switches MS510TX and MS510TXPP

Manage Device Security

User Manual

286

Logging

. If you select the

Deny

radio button, you can enable logging for the ACL by

selecting the

Enable

radio button. (Logging is subject to resource availability in the

device.)

If the access list trap flag is also enabled, periodic traps are generated, indicating the
number of times this rule was evoked during the report interval. A fixed five-minute
report interval is used for the switch. A trap is not issued if the ACL rule hit count is
zero for the current interval.

Match Every

. Select whether all packet must match the selected IPv6 ACL rule:

-

Disable

. Not all packets need to match the selected IPv6 ACL rule. You can

configure other match criteria on the page.

-

Enable

. All packets must match the selected IPv6 ACL rule and are either

permitted or denied. In this case, you cannot configure other match criteria on the
page.

Protocol Type

. Specify the IPv6 protocol type in one of the following ways:

-

From the

Protocol Type

menu, select

IPv6

,

ICMPv6

,

TCP

, or

UDP

.

-

From the

Protocol Type

menu, select

Other

, and in the associated field, specify

an integer ranging from 0 to 255. This number represents the IPv6 protocol.

Source Prefix

and

Prefix Length

. In the

Source Prefix

field and

Prefix Length

field,

enter the IPv6 prefix combined with the IPv6 prefix length of the network or host from
which the packet is being sent. The valid range for the prefix length is 0–128.

Source L4 port

. The options are available only when the protocol is set to TCP or UDP.

Use the source L4 port option to specify relevant matching conditions for L4 port
numbers in the IPv6 ACL rule.

The source port protocols are

domain

,

echo

,

ftp

,

ftpdata

,

http

,

smtp

,

snmp

,

telnet

,

tftp

, and

www

. Each of these values translates into its equivalent port number.

Select

Other

from the menu to enter a port number from 0 to 65535.

Destination Prefix

and

Prefix Length

. In the

Destination Prefix

field and

Prefix

Length

field, enter the IPv6 prefix combined with the IPv6 prefix length of the network

or host to which the packet is being sent. The valid range for the prefix length is
0–128.

Destination L4 port

. The options are available only when the protocol is set to TCP or

UDP. Use the source L4 port option to specify relevant matching conditions for L4 port
numbers in the IPv6 ACL rule.

The source port protocols are

domain

,

echo

,

ftp

,

ftpdata

,

http

,

smtp

,

snmp

,

telnet

,

tftp

, and

www

. Each of these values translates into its equivalent port number.

Select

Other

from the menu to enter a port number from 0 to 65535.

IPv6 DSCP Service

. Specify the IP DiffServ Code Point (DSCP) field. This is an

optional configuration.

Select one of the IP DiffServ Code Point (DSCP) keywords from the menu. The DSCP
is defined as the high-order 6 bits of the service type octet in the IP header. To specify