Page History
| Add_workflow_for_techpubs | ||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
| Panel | ||||
|---|---|---|---|---|
In this section:
|
...
- In the left navigation panel, click on Access Control Lists and click on the desired table.
- Click the Create Access Control List Entry (
) icon.
- Enter the desired configuration. See SWe Lite and Modifying Rules for IPv4 Access Control Lists. For sample configurations, see SWe Lite and Modifying Rules for IPv4 Access Control Lists.
Click OK.
Panel borderStyle none Caption 0 Figure 1 Create Rule Entry
Modifying a Rule
...
| Panel | ||||
|---|---|---|---|---|
| ||||
Specifies the action to be taken upon packets matching this rule. Valid selections: Deny Allow (default, packets matching this rule are not accepted) or Allow Deny (packets matching this rule are not accepted). |
IANA IP Protocol Number
...
| Panel | ||||
|---|---|---|---|---|
| ||||
Either Service or Single Port. The Services option allows you to define the service for either UDP or TCP protocol. The Single Port option should be used to specify a specific source or destination port number. This field is available only when either TCP or UDP is selected from the Protocol drop down box. |
Service
| Panel | ||||
|---|---|---|---|---|
| ||||
Services available for either TCP or UDP. Only those Ports for which the SBC 1000/2000 is a server are available as Services. This field is available only when UDP or TCP is selected from the SWe Lite and Modifying Rules for IPv4 Access Control Lists drop down box. |
Precedence
|
Precedence
| Panel | ||||
|---|---|---|---|---|
| ||||
| Panel | ||||
| ||||
Every rule should have a unique precedence value. Value range is 1 - 65535, and default is 1. |
Bucket Size
| Panel | ||||
|---|---|---|---|---|
| ||||
???? |
Fill Rate
| Panel | ||||
|---|---|---|---|---|
| ||||
???? |
. |
Bucket Size
| Panel | ||||
|---|---|---|---|---|
| ||||
The policing bucket size (in packets). It represents a credit balance that should be consumed before the packets are discarded. The consumed credits reside in the bucket and gets reduced for every packet received. 0-255 packets/second |
Fill Rate
| Panel | ||||
|---|---|---|---|---|
| ||||
The number of packets to add to the bucket credit balance (in packets/second). If a packet is received at a rate exceeding this fill rate, it is discarded subjected to the discard rate set in the IP Policing Alarm profile or in the Policer Alarm monitoring this Media Port. The bucket credit balance is always less than the configured bucket size regardless of the size of this increment. 0-25000 packet/second. |
Interface Name
| Panel | ||||
|---|---|---|---|---|
| ||||
A drop-down menu that allows the user to select an interface name of the available interfaces from the systemto which this ACL rule should be applied. |
Source Panel - Field Definitions
...
| Panel | ||||
|---|---|---|---|---|
| ||||
The port number associated with the source packets subject to this rule. This field is available only when TCP or UDP is selected from the Protocol drop down box and Single Port is selected from the Port Selection Method drop down box. |
Destination Panel - Field Definitions
...
| Panel | ||||
|---|---|---|---|---|
| ||||
The port number associated with the source packets subject to this rule. This field is available only when TCP or UDP is selected from the Protocol drop down box and Single Port is selected from the Port Selection Method drop down box. |
Sample ACL Rule Configuration
...
Overview
Content Tools