Guidelines – Allied Telesis AT-S63 User Manual
Page 150
Chapter 13: Access Control Lists
150
Section II: Advanced Operations
Guidelines
Here are the rules to creating ACLs:
Ports can have multiple permit and deny ACLs.
ACLs must have at least one classifier.
ACLs can have up to sixteen classifiers.
ACLs can be assigned to more than one switch port.
ACLs filter ingress traffic, but not egress traffic.
The action of an ACL can be either permit or deny. A permit ACL
overrides a deny ACL on the same port when the ACLs define the
same traffic.
The order in which the ACLs are added to a port is not important
because the packets are compared against all of a port’s ACLs.
ACLs that have the same classifiers cannot be assigned to the same
port because classifiers cannot be assigned more than once to a port.
This is also true for ACLs and Quality of Service policies that have the
same classifiers.
The switch can store up to 64 ACLs.