Cisco Small Business Managed Switches (Linksys Business Series)

ACL - Access Control List

The discussions below with reveal answers to the following:

• How to filter the http traffic?
• How to filter FTP traffic?
• How MAC based ACL works?

Devices:
SRW208G (switch 1)
SRW208L (switch 2)
SRW208 (switch 3)
SRW208G (switch 4)

Initial Settings

Step 1:
Download the Abyss server software, install it then specify the Web server port.

Step 2:
On the switch interface go under ACL tab then create New ACL name.

Set the following:

• Source IP address - 192.168.1.200 (This is the IP address of the PC with "deny" access).
• Destination IP addresses - 192.68.1.201 (IP address of the server).
• Source port - set to "Any" (undetermined ports, internal)
• Destination port - set port 80 (web server port)

Set Action - Permit

• Protocol - set to "Any" (this will permit other protocols to connect)
• Source IP address - 192.168.1.0 (Any IP address within this range will be given permission to access the web server).
• Destination IP address - 192.168.1.201 (web server's IP address).

Note: You must create another ACE using any port number or at least 3 ACE's.

Note:You have to configured the FTP server same way with Abyss server.

Checking Internal Ports

Results:

1. Computers should be able to ping.
2. Computer A should not access the FTP server of computer B.
3. Computer B should not access the web server of computer A.