NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

db-user's avatar
db-user
Aspirant
Aug 08, 2017
Solved

Execution order when binding multiple IP ACL tables

Model : GS108T managed switch   From your excellent manual, I understand that there is an implicit "Deny All" ACL rule at the end of an IP ACL table.   When binding multiple IP ACL tables (say, A...
Solutions
  • Hopchen's avatar
    Hopchen
    Aug 08, 2017

    Hi,

     

    I assume you are making two different ACL tables? One table called: "ACL ID1" and one called "ACL ID2"? Or are you referring to two ACL rules, inside the same table?

     

    Assuming that you are talking about two different tables and how to bind those to a single port:

     

    1. You need bind the first table and give that sequence number: 1. Then bind the second table to the same port, but bind with sequence number: 2. What this will do is read all the ACLs in table 1 and the continue on to the rules in table 2 - as if they were one big table.

     

    2. If you want several ACL tables to be executed, one after the other, then you only put a "Permit All" at the bottom of the last ACL table.

     

    3. If no condition is meet in the last ACL table ("ACL ID2" in your case), then the implicit "Deny All" will be executed. Hence why you should set the "Permit All" as the last rule of the last table in the sequence. 


    I hope this helped. Cheers

db-user's avatar
db-user
Aspirant
Aug 08, 2017

Many thanks.

 

I did some homework and think I now understand the reason for the Permit All.

Hopchen's avatar
Hopchen
Prodigy
Aug 08, 2017

No problem :)

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More