![Moxa PT-7528-20MSC-4TX-4GSFP-HV-HV [100/116] Access control list configuration and setup](/img/pdf.png)
Moxa PT-7528-20MSC-4TX-4GSFP-HV-HV [100/116] Access control list configuration and setup
![Moxa PT-7528-16MST-8TX-4GSFP-HV-HV [100/116] Access control list configuration and setup](/views2/1196192/page100/bg64.png)
PT-7528 Series Advanced Settings
4-80
Filter type defines whether the access list will examine packets based on IP or MAC address. This type affects
what detailed rules can be edited. Then, assign the ports you would like to apply the list to. You can also define
Ingress and Egress per port.
After adding a new access control list, you can also create new rules for the access control list. Each ACL group
accepts 10 rules. Rules can filter packets by source and destination IP/MAC address, IP protocol, TCP/UDP Port,
Ethernet Type, and VLAN ID.
After all rules are set, ACL starts to filter the packets by the rule with the highest Priority Index (smaller number,
higher priority). Once a rule denies or accepts its access, the packet will be dropped or passed.
Access Control List Configuration and Setup
Access Control List Settings
Creating an access control list starts at the Access Control List Setting page.
In this page, you can mainly configure two settings:
Add/Modify Access Control List
This function lets you Add a new access control list or Modify an existing access control list. The operation
depends on the Priority Index you select. If the selected priority index is still empty, you can start by creating
a new access control list. Parameters for editing are:
• Priority Index: ACL checking sequence is based on this index. Smaller index numbers have higher priority
for packet filtering. If a packet is filtered by an access list with higher priority, those access lists with lower
priority will not being executed.
Note that Priority Index is not a one-to-one index for each list name. It changes when swapping the priority
of different access control lists.
The maximum Priority Index number is 16
• Name: You can name the access control list in this field. This is the access list’s unique name.
• Filter: Select filtering by either IP or MAC address. Detailed settings can be configured in the Access
Control Rule Settings page.
• Ingress Port Map/Egress Port Map: You can choose which ports to apply the rules to. The Ingress and
Egress condition uses OR logic. This means a packet only needs to match one ingress or egress port rule to
be examined.
If a selected priority index is already in the access control list, then you can modify these parameters listed
above. After configuration, click Activate to confirm the settings. Then you will see a new list appear in the
Access Control List table.
Содержание
- Pt 7528 series user s manual 1
- Second edition august 2014 1
- Www moxa com product 1
- Copyright notice 2
- Disclaimer 2
- Pt 7528 series user s manual 2
- Technical support contact information 2
- Trademarks 2
- Www moxa com support 2
- Table of contents 3
- About this manual 5
- Getting started 6
- Pt 7528 series getting started 7
- Serial console configuration 115200 none 8 1 vt100 7
- Pt 7528 series getting started 8
- Configuration by telnet console 9
- Pt 7528 series getting started 9
- Pt 7528 series getting started 10
- Configuration by web browser 11
- Pt 7528 series getting started 11
- Disabling telnet and browser access 12
- Pt 7528 series getting started 12
- Quick settings 13
- Pt 7528 series quick settings 14
- Quick settings 14
- System time 14
- Pt 7528 series quick settings 15
- Pt 7528 series quick settings 16
- Redundancy 16
- Attention 17
- Pt 7528 series quick settings 17
- Q vlan settings 17
- Mirror 18
- Pt 7528 series quick settings 18
- Unaware vlan settings 18
- Pt 7528 series quick settings 19
- Finish 20
- Pt 7528 series quick settings 20
- Summary 20
- Advanced settings 21
- Configuring advanced settings 22
- Pt 7528 series advanced settings 22
- System identification 22
- Attention 23
- Password 23
- Pt 7528 series advanced settings 23
- Accessible ip list 24
- Pt 7528 series advanced settings 24
- Attention 25
- Ethernet port settings 25
- Port settings 25
- Pt 7528 series advanced settings 25
- Network parameters 26
- Pt 7528 series advanced settings 26
- Pt 7528 series advanced settings 27
- Garp timer parameters 28
- Pt 7528 series advanced settings 28
- Daylight saving time 29
- Pt 7528 series advanced settings 29
- System time settings 29
- How does an ethernet switch affect 1588 synchronization 30
- Ieee 1588 ptp 30
- Pt 7528 series advanced settings 30
- Can ethernet switches be designed to avoid the effects of these 31
- Can ethernet switches be designed to avoid the effects of these fluctuations 31
- Fluctuations 31
- Pt 7528 series advanced settings 31
- Configuring ptp 32
- Ieee 1588 ptp configuration 32
- Ieee 1588 ptp operation 32
- Pt 7528 series advanced settings 32
- Pt 7528 series advanced settings 33
- Pt 7528 series advanced settings 34
- Ptp port settings 34
- Status 34
- Pt 7528 series advanced settings 35
- System file update 35
- Update system files by remote tftp 35
- Abc auto backup configurator configuration 36
- Pt 7528 series advanced settings 36
- Update system files from local pc 36
- Loop protection 37
- Reset to factory default 37
- Restart 37
- Port trunking settings 38
- Pt 7528 series advanced settings 38
- The port trunking concept 38
- Using port trunking 38
- Pt 7528 series advanced settings 39
- Configuring snmp 40
- Pt 7528 series advanced settings 40
- Pt 7528 series advanced settings 41
- Snmp read write settings 41
- Pt 7528 series advanced settings 42
- Snmp trap mode inform 42
- Snmp trap mode trap 42
- Trap settings 42
- Poe setting 43
- Private mib information 43
- Type 1 43
- Using poe poe models only 43
- Poe power budget 44
- Poe timetabling 44
- Port setting 44
- Pt 7528 series advanced settings 44
- Poe email warning events settings 45
- Poe status 45
- Pt 7528 series advanced settings 45
- Weekly timetabling 45
- Poe relay warning events settings 46
- Pt 7528 series advanced settings 46
- Poe setting 47
- Poe system configuration 47
- Pt 7528 series advanced settings 47
- Type 2 47
- Poe port configuration 48
- Pt 7528 series advanced settings 48
- Poe device failure check 49
- Poe timetabling 49
- Pt 7528 series advanced settings 49
- Poe warning event setting 50
- Pt 7528 series advanced settings 50
- Warning type 50
- Weekly timetabling 50
- Event type 51
- Pt 7528 series advanced settings 51
- Diagnose configuration 52
- Poe diagnose 52
- Pt 7528 series advanced settings 52
- Monitoring configuration 53
- Poe port status 53
- Pse status 53
- Pt 7528 series advanced settings 53
- Monitoring configuration 54
- Poe port status 54
- Poe system status 54
- Pt 7528 series advanced settings 54
- System power status 54
- Ieee 802 d traffic marking 55
- Pt 7528 series advanced settings 55
- The traffic prioritization concept 55
- Using traffic prioritization 55
- Differentiated services diffserv traffic marking 56
- Pt 7528 series advanced settings 56
- Traffic prioritization 56
- Traffic queues 56
- Configuring traffic prioritization 57
- Pt 7528 series advanced settings 57
- Qos classification 57
- Pt 7528 series advanced settings 58
- Pt 7528 series advanced settings 59
- Type 2 59
- Cos mapping 60
- Cos value and priority queues 60
- Pt 7528 series advanced settings 60
- The virtual lan vlan concept 61
- Tos diffserv mapping 61
- Using virtual lan 61
- What is a vlan 61
- Benefits of vlans 62
- Managing a vlan 62
- Pt 7528 series advanced settings 62
- Vlans and the rackmount switch 62
- Communication between vlans 63
- Pt 7528 series advanced settings 63
- Sample applications of vlans using moxa switches 63
- Vlans tagged and untagged membership 63
- Configuring virtual lan 64
- Pt 7528 series advanced settings 64
- Vlan settings 64
- Attention 65
- Pt 7528 series advanced settings 65
- Q vlan settings 65
- Port based vlan settings 66
- Pt 7528 series advanced settings 66
- Qinq setting 66
- Unaware vlan settings 66
- Pt 7528 series advanced settings 67
- Vlan table 67
- Benefits of multicast 68
- Multicast filtering 68
- Pt 7528 series advanced settings 68
- The concept of multicast filtering 68
- Using multicast filtering 68
- What is an ip multicast 68
- Multicast filtering and moxa s industrial rackmount switches 69
- Pt 7528 series advanced settings 69
- Gmrp garp multicast registration protocol 70
- Igmp multicast filtering 70
- Pt 7528 series advanced settings 70
- Static multicast mac 70
- Configuring igmp snooping 71
- Enabling multicast filtering 71
- Pt 7528 series advanced settings 71
- Pt 7528 series advanced settings 72
- Current active igmp streams 73
- Pt 7528 series advanced settings 73
- Pt 7528 series advanced settings 74
- Static multicast mac addresses 74
- Configuring gmrp 75
- Gmrp table 75
- Pt 7528 series advanced settings 75
- Configuring bandwidth management 76
- Multicast filtering behavior 76
- Pt 7528 series advanced settings 76
- Using bandwidth management 76
- Pt 7528 series advanced settings 77
- Type 1 77
- Pt 7528 series advanced settings 78
- Type 2 78
- Pt 7528 series advanced settings 79
- Pt 7528 series advanced settings 80
- Security 80
- User login authentication auth server setting 80
- User login authentication user login settings 80
- Authentication certificate 81
- Static port lock 81
- Using port access control 81
- Configuring static port lock 82
- Ieee 802 x 82
- Pt 7528 series advanced settings 82
- Configuring ieee 802 x 83
- Pt 7528 series advanced settings 83
- Local user database setup 84
- Pt 7528 series advanced settings 84
- X re authentication 84
- Configuring email warning 85
- Dot1x radius server setting 85
- Port access control table 85
- Using auto warning 85
- Activate your settings and if necessary test the email 86
- Configure email event types 86
- Configure email settings 86
- Configuring event types 86
- Pt 7528 series advanced settings 86
- Configuring email settings 87
- Pt 7528 series advanced settings 87
- Activate your settings 88
- Configure relay event types 88
- Configuring event types 88
- Configuring relay warning 88
- Pt 7528 series advanced settings 88
- Pt 7528 series advanced settings 89
- Using line swap fast recovery 89
- Warning list 89
- Configuring line swap fast recovery 90
- Pt 7528 series advanced settings 90
- Using set device ip 90
- Automatic set device ip by dhcp bootp rarp 91
- Configuring set device ip 91
- Pt 7528 series advanced settings 91
- Configuring dhcp relay agent 92
- Dhcp option 82 92
- Pt 7528 series advanced settings 92
- Server ip address 92
- Dhcp function table 93
- Mirror port 93
- Pt 7528 series advanced settings 93
- Type 1 93
- Using diagnosis 93
- Pt 7528 series advanced settings 94
- Type 2 94
- Configuring lldp settings 95
- General settings 95
- Lldp function 95
- Overview 95
- Pt 7528 series advanced settings 95
- Lldp table 96
- Monitor by port 96
- Monitor by switch 96
- Pt 7528 series advanced settings 96
- Using monitor 96
- Monitor by sfp 97
- Pt 7528 series advanced settings 97
- Pt 7528 series advanced settings 98
- Using the mac address table 98
- Benefits of acl 99
- How acl works 99
- The acl concept 99
- Using access control list 99
- What is acl 99
- Access control list configuration and setup 100
- Access control list settings 100
- Add modify access control list 100
- Pt 7528 series advanced settings 100
- Access control rule settings 101
- Adjust acl priority index 101
- Ip based 101
- Pt 7528 series advanced settings 101
- Mac based 102
- Port configuration display 102
- Pt 7528 series advanced settings 102
- Pt 7528 series advanced settings 103
- Pt 7528 series advanced settings 104
- Using event log 104
- Using syslog 104
- Pt 7528 series advanced settings 105
- Using https ssl 105
- Ethernet ip 106
- Modbus tcp 106
- Pt 7528 series advanced settings 106
- Using industrial protocol 106
- Mms dedicated port 107
- Pt 7528 series advanced settings 107
- Eds configurator gui 108
- Broadcast search 109
- Pt 7528 series eds configurator gui 109
- Starting eds configurator 109
- Pt 7528 series eds configurator gui 110
- Search by ip address 110
- Upgrade firmware 110
- Export configuration 111
- Modify ip address 111
- Pt 7528 series eds configurator gui 111
- Import configuration 112
- Pt 7528 series eds configurator gui 112
- Pt 7528 series eds configurator gui 113
- Unlock server 113
- Pt 7528 series eds configurator gui 114
- Mib groups 115
- Mib ii 0 transmission group 115
- Mib ii 1 snmp group 115
- Mib ii 7 dot1dbridge group 115
- Mib ii icmp group 115
- Mib ii interfaces group 115
- Mib ii ip group 115
- Mib ii system group 115
- Mib ii tcp group 115
- Mib ii udp group 115
- Private traps 116
- Pt 7528 series mib groups 116
- Public traps 116
Похожие устройства
- Moxa PT-7528-20MSC-4TX-4GSFP-HV-HV Руководство по аппаратной части
- Moxa PT-7528-20MSC-4TX-4GSFP-HV-HV Руководство по использованию командной строки
- Moxa PT-7528-20MSC-4TX-4GSFP-HV-HV Технические характеристики
- Moxa PT-7528-20MSC-4TX-4GSFP-WV Инструкция по эксплуатации
- Moxa PT-7528-20MSC-4TX-4GSFP-WV Руководство по аппаратной части
- Moxa PT-7528-20MSC-4TX-4GSFP-WV Руководство по использованию командной строки
- Moxa PT-7528-20MSC-4TX-4GSFP-WV Технические характеристики
- Moxa PT-7528-20MSC-4TX-4GSFP-WV-WV Инструкция по эксплуатации
- Moxa PT-7528-20MSC-4TX-4GSFP-WV-WV Руководство по аппаратной части
- Moxa PT-7528-20MSC-4TX-4GSFP-WV-WV Руководство по использованию командной строки
- Moxa PT-7528-20MSC-4TX-4GSFP-WV-WV Технические характеристики
- Moxa PT-7528-20MST-4TX-4GSFP-HV Инструкция по эксплуатации
- Moxa PT-7528-20MST-4TX-4GSFP-HV Руководство по аппаратной части
- Moxa PT-7528-20MST-4TX-4GSFP-HV Руководство по использованию командной строки
- Moxa PT-7528-20MST-4TX-4GSFP-HV Технические характеристики
- Moxa PT-7528-20MST-4TX-4GSFP-HV-HV Инструкция по эксплуатации
- Moxa PT-7528-20MST-4TX-4GSFP-HV-HV Руководство по аппаратной части
- Moxa PT-7528-20MST-4TX-4GSFP-HV-HV Руководство по использованию командной строки
- Moxa PT-7528-20MST-4TX-4GSFP-HV-HV Технические характеристики
- Moxa PT-7528-20MST-4TX-4GSFP-WV Инструкция по эксплуатации