27
STEP 1
STEP 2
STEP 3
STEP 4
NOTE
STEP 1
STEP 2
STEP 3
STEP 4
587
IPv6 ACLs are defined in the IPv6 Based ACL page.
Defining an IPv4-based ACL
To define an IPv4-based ACL:
Click Access Control > IPv4-Based ACL.
This page contains all currently defined IPv4-based ACLs.
Click Add.
Enter the name of the new ACL in the ACL Name field. The names are
case-sensitive.
Click Apply. The IPv4-based ACL is saved to the Running Configuration file.
Adding Rules (ACEs) to an IPv4-Based ACL
Each IPv4-based rule consumes one TCAM rule. Note that the TCAM allocation is
performed in couples, such that, for the first ACE, 2 TCAM rules are allocated and
the second TCAM rule is allocated to the next ACE, and so forth.
To add rules (ACEs) to an IPv4-based ACL:
Click Access Control > IPv4-Based ACE.
Select an ACL, and click Go. All currently-defined IP ACEs for the selected ACL are
displayed.
Click Add.
Enter the parameters.
•
ACL Name—Displays the name of the ACL.
•
Priority—Enter the priority. ACEs with higher priority are processed first.
•
Action—Select the action assigned to the packet matching the ACE. The
options are as follows:
-
Permit
—Forward packets that meet the ACE criteria.
Deny
-
—Drop packets that meet the ACE criteria.
Cisco 500 Series Stackable Managed Switch Administration Guide
Access Control
IPv4-based ACLs