Figure 7: acl example 2 – Allied Telesis AT-S63 User Manual
Page 126
Chapter 11: Access Control Lists
126
Section II: Advanced Operations
To deny traffic from several subnets on the same port, you can create
multiple classifiers and apply them to the same ACL, as illustrated in the
next example. Three subnets are denied access to port 4. The three
classifiers defining the subnets are applied to the same ACL.
Figure 7. ACL Example 2
Create Access Control Lists (ACL)
1 - ACL ID ................. 4
2 - Description .......... Subnets - deny
3 - Action .................. Deny
4 - Classifier List ...... 22, 24, 62
5 - Port List .............. 4
Create Classifier
01 - Classifier ID: ..... 24
02 - Description: ...... 149.22.22 flow
.
.
12 - Src IP Addr: ..... 149.22.22.0
13 - Src IP Mask: .... 255.255.255.0
Create Classifier
01 - Classifier ID: ..... 22
02 - Description: ...... 149.11.11 flow
.
.
12 - Src IP Addr: ..... 149.11.11.0
13 - Src IP Mask: .... 255.255.255.0
Create Classifier
01 - Classifier ID: ..... 62
02 - Description: ...... 149.33.33 flow
.
.
12 - Src IP Addr: ..... 149.33.33.0
13 - Src IP Mask: .... 255.255.255.0