4.10.2.3.1 Security-Network-ACL-Ports Configuration

Configure the ACL parameters of each switch port, as shown in the following figure. These parameters affect frames received on a port u)nless the frame matches a specific ACE.

Figure 4-46. ACL Ports Configuration
???

The ACL Ports Configuration page has the following parameters:

  • Port: The logical port for the settings contained in the same row
  • Policy ID: Select the policy to apply to this port. The allowed values are 0–63. Default value is 0.
  • Action: Select if forwarding is permitted (Permit) or denied (Deny). The default value is Permit.
  • Rate Limiter ID: Select which rate limiter to apply on this port. The allowed values are Disabled or the values 1–16. The default value is Disabled.
  • Port Redirect: Select which port frames are redirected. The allowed values are Disabled, or a specific port number and it cannot be set when action is permitted. The default value is Disabled.
  • Mirror: Specify the mirror operation of this port. The allowed values are:
    • Enabled: Frames received on the port are mirrored
    • Disabled: Frames received on the port are not mirrored The default value is Disabled.
  • Logging: Specify the logging operation of this port. Notice that the logging message does not include the 4 bytes CRC. The allowed values are:
    • Enabled: Frames received on the port are stored in the System Log

    • Disabled: Frames received on the port are not logged The default value is Disabled.

      Note: The logging feature only works when the packet length is less than 1518 (without VLAN tags) and the System Log memory size and logging rate is limited.
  • Shutdown: Specify the port shut down operation of this port. The allowed values are:
    • Enabled: If a frame is received on the port, the port is disabled

    • Disabled: Port shut down is disabled. The default value is Disabled.

      Note: The shutdown feature only works when the packet length is less than 1518 (without VLAN tags).
  • State: Specify the port state of this port. The allowed values are:
    • Enabled: To reopen ports by changing the volatile port configuration of the ACL user module
    • Disabled: To close ports by changing the volatile port configuration of the ACL user module The default value is Enabled.
  • Counter: Counts the number of frames that match this ACE.