Guidelines – Allied Telesis AT-S63 User Manual

Chapter 11: Access Control Lists

124

Section II: Advanced Operations

Guidelines

Here are the rules to creating ACLs:

ˆ

A port can have multiple permit and deny ACLs.

ˆ

An ACL must have at least one classifier.

ˆ

An ACL can be assigned to more than one switch port.

ˆ

An ACL filters ingress traffic, but not egress traffic.

ˆ

The action of a ACL can be either permit or deny. A permit ACL
overrides a deny ACL on the same port when the ACLs define the
same traffic.

ˆ

The order in which the ACLs are added to a port is not important since
the packets are compared against all of a port’s ACLs.

ˆ

Since classifiers cannot be assigned more than once to a port, ACLs
that have the same classifier cannot be assigned to the same port.

ˆ

An ACL and a Quality of Service policy cannot be assigned to the
same port if they have a common classifier.

ˆ

The switch can store up to 64 ACLs.