NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
M4300 ACL's
Hello,
I would like to create an ACL on the web interface to allow traffic from client to licensing server on a particular port.
Please see the attached screenshot and let me know if it is right?
Thanks,
Sravan
Hi spopuri
Welcome to Community!
Do you want to only allow DIP=10.3.200.40 and UDP D-Port from 27000~27009 packet fowarding on the binding port? But this is only for Client->Server direction, so what about Server->Client direction? Allow or dely? Currently your config ACL will deny all packet that from Server->Client direction, is it your expected behavior?
If you want to allow both two direction traffic, you can add one more rule that permit with SIP=10.3.200.40 and UDP S-Port from 27000~27009(need you confirm if it's match your traffic that from Server->Client), then bind this ACL to the port.
Regards,
Eric
4 Replies
Replies have been turned off for this discussion
Hi spopuri
Welcome to Community!
Do you want to only allow DIP=10.3.200.40 and UDP D-Port from 27000~27009 packet fowarding on the binding port? But this is only for Client->Server direction, so what about Server->Client direction? Allow or dely? Currently your config ACL will deny all packet that from Server->Client direction, is it your expected behavior?
If you want to allow both two direction traffic, you can add one more rule that permit with SIP=10.3.200.40 and UDP S-Port from 27000~27009(need you confirm if it's match your traffic that from Server->Client), then bind this ACL to the port.
Regards,
Eric
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
