4-60
Device Manager Guide, Cisco ACE 4700 Series Application Control Engine Appliance
OL-26645-02
Chapter 4 Configuring Virtual Contexts
Configuring Security with ACLs
Step 2 From the summary table, do one of the following:
• To view full details of an ACL inline, click the plus sign to the left of any table entry.
• To create an ACL, click the Add icon. The New Access List screen appears (go to Step 3).
• To modify an ACL, select the radio button to the left of any table entry, and then click the Edit icon.
The Edit ACL or Edit ACL entry screen appears based on the selected radio button to the left of any
table entry (go to Step 3).
• To delete an ACL, select the radio button to the left of any table entry, and then click the Delete icon.
Step 3 Add or edit required fields as described in Table 4-16.
Interface VLAN interface(s) that is/are associated with this ACL, for example
in4,5:4out where, in denotes the input direction, out denotes the output
direction.
Remark Enter any comments you want to include for this ACL. Valid entries are
unquoted text strings with a maximum of 100 characters. You can enter
leading spaces at the beginning of the text or special characters. Trailing
spaces are ignored.
Table 4-15 ACL Summary Table (continued)
Field Description
Table 4-16 ACL Configuration Attributes
Field Description
ACL Properties Includes name, type (Extended, Ethertype), IP address type (IPv6 andIPv4),
and remarks. For more information, see the “Table 4-15ACL Summary
Table” task on page 4-59.
ACL Entries
Entry Attributes Includes line number, action (Permit, Deny), protocol or service object
group, and associated drop down descriptor menu. For more information for
these attributes, see the “Setting Extended ACL Attributes” section on
page 4-61 or “Setting EtherType ACL Attributes” section on page 4-67.
Source (Extended type ACL only) Source IPv6 address and prefix length, IPv4
address and netmask with port number (if configured), or network object
group (if configured) that is being applied to this ACL entry. For more
information see the “Setting Extended ACL Attributes” section on
page 4-61.
Destination (Extended type ACL only) Destination IPv6 address and prefix length, IPv4
address and netmask with port number (if configured), or network object
group (if configured) that is being applied to this ACL entry. For more
information see the “Setting Extended ACL Attributes” section on
page 4-61.
Add To Table button Used to add multiple ACL entries, adding one at a time using this button,
before clicking Deploy. In the past only one entry could be added at a time
in a two-step process hopping between two different locations in the UI.
Remove From Table
button
Used to remove multiple ACL entries, removing one at a time using this
button, before clicking Deploy.
Comments to this Manuals