Page History
...
- In the left navigation panel, click on Access Control Lists and click on the desired table.
- Click on the desired entry.
Enter the desired configuration. See Creating and Modifying Rules for IPv4 and IPv6 Access Control Lists in SBC SWe Edge#General General Information Panel - Field Definitions.
Note title Note Federated IP addresses and FQDNs specified in an Access Control List are whitelisted.
Click OK.
Panel borderStyle none Caption 0 Figure 1 Create Rule Entry
General Information Panel - Field Definitions
...
Modifying a Rule
Include Page | ||||||
---|---|---|---|---|---|---|
|
Include Page | ||||||
---|---|---|---|---|---|---|
|
...
Note | |
---|---|
System defaults for IPv4 and IPv6 cannot be deleted. | |
Caption | |
0 | Figure | 1 |
System Default IPv4 ACL List
IPv4 Default List | Protocol | Source IP/Mask | Destination IP/Mask | Protocol Service | Action | Interface Name | Precedence | Primary Key |
---|---|---|---|---|---|---|---|---|
Allow DHCP Access | ||||||||
allow-dhcpv4-dstPort-67 | UDP | Any | Any | DHCP/BOOTP (Server) | Allow | - | 65000 | 1 |
allow-dhcpv4-dstPort-68 | UDP | Any | Any | --None-- | Allow | - | 65001 | 2 |
allow-dhcpv4-srtPort-67 | UDP | Any | Any | --None-- | Allow | - | 65002 | 3 |
allow-dhcpv4-srtPort-68 | UDP | Any | Any | --None-- | Allow | - | 65003 | 4 |
Allow Terminal Services | ||||||||
allow-ssh-=dstPort-22 | TCP | Any | Any | SSH | Allow | - | 65004 | 1 |
allow-ssh-=dstPort-80 | TCP | Any | Any | HTTP | Allow | - | 65005 | 2 |
allow-ssh-=dstPort-443 | TCP | Any | Any | HTTPS | Allow | - | 65006 | 3 |
Allow Everything | ||||||||
allow-all-tcp | TCP | Any | Any | --None-- | Allow | - | 65007 | 1 |
allow-all-udp | UDP | Any | Any | --None-- | Allow | - | 65008 | 2 |
allow-all-icmp | ICMP | Any | Any | --None-- | Allow | - | 65009 | 3 |
...
...
System Default IPv6 ACL List
IPv6 Default List | Protocol | Source IP/Mask | Destination IP/Mask | Protocol Service | Action | Interface Name | Precedence | Primary Key |
---|---|---|---|---|---|---|---|---|
Allow DHCP Access | ||||||||
allow-dhcpv4-dstPort-67 | UDP | Any | Any | --None-- | Allow | - | 64000 | 1 |
allow-dhcpv4-dstPort-68 | UDP | Any | Any | --None-- | Allow | - | 64001 | 2 |
allow-dhcpv4-srtPort-67 | UDP | Any | Any | --None-- | Allow | - | 64002 | 3 |
allow-dhcpv4-srtPort-68 | UDP | Any | Any | --None-- | Allow | - | 64003 | 4 |
Allow Terminal Services | ||||||||
allow-ssh-=dstPort-22 | TCP | Any | Any | --None-- | Allow | - | 64004 | 1 |
allow-ssh-=dstPort-80 | TCP | Any | Any | --None-- | Allow | - | 64005 | 2 |
allow-ssh-=dstPort-443 | TCP | Any | Any | --None-- | Allow | - | 64006 | 3 |
Allow Everything | ||||||||
allow-all-tcp | TCP | Any | Any | --None-- | Allow | - | 64007 | 1 |
allow-all-udp | UDP | Any | Any | --None-- | Allow | - | 64008 | 2 |
allow-all-icmp | ICMPv6 | Any | Any | --None-- | Allow | - | 64009 | 3 |
Anchor | ||||
---|---|---|---|---|
|
...
Sample ACL Rule for Microsoft Teams
Description | Protocol | Source IP/Mask | Destination IP/Mask | Protocol Service | Action | Interface Name | Precedence | Primary Key |
---|---|---|---|---|---|---|---|---|
Outbound DNS Request | TCP | <Source IP/Mask> | Any | DNS | Allow | Ethernet 1 | 1 | 1 |
Outbound DNS Reply | TCP | Any | <Destination IP/Mask> | --None-- | Allow | Ethernet 1 | 2 | 2 |
Outbound DNS Request | UDP | <Source IP/Mask> | Any | DNS | Allow | Ethernet 1 | 3 | 3 |
Outbound DNS Reply | UDP | Any | <Destination IP/Mask> | --None-- | Allow | Ethernet 1 | 4 | 4 |
Outbound NTP Request | UDP | <Source IP/Mask> | Any | --None-- | Allow | Ethernet 1 | 5 | 5 |
Outbound NTP Reply | UDP | Any | <Destination IP/Mask> | --None-- | Allow | Ethernet 1 | 6 | 6 |
Outbound SIP Request | TCP | <Source IP/Mask> | Any | --None-- | Allow | Ethernet 1 | 7 | 7 |
Outbound SIP Reply | TCP | Any | <Destination IP/Mask> | --None-- | Allow | Ethernet 1 | 8 | 8 |
Inbound SIP Request | TCP | Any | <Destination IP/Mask> | --None-- | Allow | Ethernet 1 | 9 | 9 |
Inbound SIP Reply | TCP | <Source IP/Mask> | Any | --None-- | Allow | Ethernet 1 | 10 | 10 |
Outbound DHCP Request Port-67 | UDP | Any | Any | DHCP/BOOTP (Server) | Allow | Ethernet 1 | 11 | 11 |
Outbound DHCP Request Port-68 | UDP | Any | Any | --None-- | Allow | Ethernet 1 | 12 | 12 |
Outbound DHCP Reply Port-67 | UPD | Any | Any | --None-- | Allow | Ethernet 1 | 13 | 13 |
Outbound DHCP Reply Port-68 | UPD | Any | Any | --None-- | Allow | Ethernet 1 | 14 | 14 |
Deny All Protocol | Any | Any | Any | --None-- | Deny | Ethernet 1 | 15 | 15 |
Overview
Content Tools