Access Control
Access Control Lists
STEP 1
STEP 2
Cisco 220 Series Smart Switches Administration Guide Release 1.1.0.x
The following types of ACLs can be defined (depending on which part of the
frame header is examined):
•
MAC-based ACL—Examines Layer 2 fields only, as described in the
Configuring MAC-based ACLs
•
IP ACL—Examines the Layer 3 of IP frames, as described in the
Configuring IPv4-based ACLs
•
IPv6 ACL—Examines the Layer 3 of IPv4 frames, as described in the
Configuring IPv6-based ACLs
If a frame matches the filter in an ACL, it is defined as a flow with the name of that
ACL. In QoS advanced mode, these frames can be referred to using this flow
name, and QoS can be applied to these frames (see
Mode).
Creating ACLs Workflow
To create ACLs and associate them with an interface, perform the following:
Create one or more of the following types of ACLs:
•
MAC-based ACL on the MAC-Based ACL page and the MAC-Based ACE
page. See
Configuring MAC-based ACLs
ACEs
for more details.
•
IPv4-based ACL on the IPv4-Based ACL page and the IPv4-Based ACE
page. See
Configuring IPv4-based ACLs
ACEs
for more details.
•
IPv6-based ACL on the IPv6-Based ACL page and the IPv6-Based ACE
page. See
Configuring IPv6-based ACLs
ACEs
for more details.
Associate the ACL with interfaces on the ACL Binding page. See
Binding
for more details.
section.
section.
section.
Configuring QoS Advanced
and
Configuring MAC-based
and
Configuring IPv4-Based
and
Configuring IPv6-based
17
Configuring ACL
235