Chapter 7. Access Control Lists
© Copyright Lenovo 2016
Access Control Lists (ACLs) are filters that permit or deny traffic for security
purposes. They can also be used with QoS to classify and segment traffic to
provide different levels of service to different traffic types. Each filter defines the
conditions that must match for inclusion in the filter, and also the actions that are
performed when a match is made.
Lenovo Enterprise Network Operating System 8.4 supports the following ACLs:
IPv4 ACLs
Up to 256 ACLs are supported for networks that use IPv4 addressing. IPv4
ACLs are configured using the following ISCLI command path:
RS G8264(config)# accesscontrol list <IPv4 ACL number> ?
IPv6 ACLs
Up to 128 ACLs are supported for networks that use IPv6 addressing. IPv6
ACLs are configured using the following ISCLI command path:
RS G8264(config)# accesscontrol list6 <IPv6 ACL number> ?
Note: ACLs are not supported with IPv6 in Stacking mode.
VLAN Maps (VMaps)
Up to 128 VLAN Maps are supported for attaching filters to VLANs rather than
ports. See "VLAN Maps" on page
Management ACLs (MACLs)
Up to 256 MACLs are supported for filtering traffic toward CPU. MACLs are
configured using the following ISCLI command path:
RS G8264(config)# accesscontrol macl <MACL number> ?
136 for details.
125