Topic: Can you configure Access Control Lists (ACLs) to allow/deny the inbound traffic (Read 878 times)

jmelika · « **on:** August 13, 2007, 05:54:25 PM »

Yes, you can configure an ACL to manage the traffic to/from users on a specific port. This feature is available on NetScaler version 6.0 and later. By default, the ACLs are processed by the NetScaler in the sequence they are added to the configuration. You can change this behavior by placing a priority at the end of the ACL.

Note: There is an implied permit any traffic statement at the end of every access-list.

Usage example:

> add acl <acl_name> <allow/deny/bridge>
add acl <acl_name> <allow/deny/bridge> -destIP [<operator>] <destIPVal>
add acl <acl_name> <allow/deny/bridge> -destPort [<operator>] <destPortVal>
add acl <acl_name> <allow/deny/bridge> -established
add acl <acl_name> <allow/deny/bridge> -interface <interface_name>
add acl <acl_name> <allow/deny/bridge> -priority <positive_integer>
add acl <acl_name> <allow/deny/bridge> -protocol <protocol> | -protocolNumber <positive_integer>
add acl <acl_name> <allow/deny/bridge> -srcIP [<operator>] <srcIPVal>
add acl <acl_name> <allow/deny/bridge> -srcMac <mac_addr>
add acl <acl_name> <allow/deny/bridge> -srcPort [<operator>] <srcPortVal>
add acl <acl_name> <allow/deny/bridge> -state <state>
add acl <acl_name> <allow/deny/bridge> -vlan <positive_integer>

Netscaler Knowledgebase

News:

Author Topic: Can you configure Access Control Lists (ACLs) to allow/deny the inbound traffic (Read 878 times)

jmelika

Can you configure Access Control Lists (ACLs) to allow/deny the inbound traffic