Configuring access lists – Lucent Technologies P550 User Manual
Page 134
Configuring IP Routing (Layer 3)
7-8
Cajun P550/P220 Switch Operation Guide
Example: Creating a Multinet Interface
To create a multinet interface:
1. In the IP Configuration section of the Web Agent window, click Interfaces. The
IP Interfaces dialog box opens.
2. Click CREATE to create a multinetting interface. The Add IP Interface dialog box
opens.
3. In the Interface field, enter the name of the new interface.
4. From the VLAN pull-down menu, select the VLAN for this multinet
configuration.
5. In the Network Address field, enter the network address associated with this
interface.
6. Click CREATE. The IP Interfaces dialog box opens with the new interface listed.
7. Repeat steps 2 through 6 for all the interfaces you want associated with the same
VLAN.
Note: You must have a different network address for each new multinetting
interface that you create for the same VLAN.
Configuring Access Lists
Access control lists (ACLs), also referred to as access lists, contain rules that forward or
deny data to and through the switch. By configuring access lists, you can:
❒ Prioritize the transmission of frames within the Cajun P550R switch.
❒ Filter out specific or general network transmissions (for example, all traffic from a
particular subnet to the switch).
When you create an access list, you create a series of rules that describe how data is
forwarded or filtered within the switch. You can assign up to eight levels of priority to
routed data.
Standard access lists support the conversion to the Web Agent of Cisco scripts that
contain access lists. Extended access lists enable the switch to filter or deny information
between two specified subnets via specific protocols, such as the Transmission Control
Protocol (TCP) and the User Datagram Protocol (UDP), and specified ranges of ports.
Note: Access rules are searched in order of priority from first to last. During this
search, the first rule that matches the frame is applied. If no rule is matched to
a frame, then the frame is forwarded with normal priority. You can not use
access lists to filter traffic destined to the switch’s CPU.