Access Control Lists (ACLs) are instruction lists applied to router interfaces. These instruction lists are used to tell the router which packets can be received and which packets need to be rejected. As for whether a packet is received or rejected, it can be determined by specific indication conditions such as source address, destination address, port number, etc.
ACL function:
1) Limit network traffic and improve network performance. For example, ACL can specify that this type of data packet has higher priority based on its protocol, and can be pre processed by network devices in the same situation.
2) Provide control measures for communication flow.
3) Provide basic security measures for network access.
4) At the network device interface, determine which type of communication traffic is forwarded and which type of communication traffic is blocked.
The usage of our company's self-developed hdv epon olt ACL:
1. Create an ACL (including Basic, Advanced, and Link), with basic ACLs ranging from 2000 to 2999, advanced ACLs ranging from 3000 to 4999, and link ACLs ranging from 5000 to 5999. For example, ACL 2000 (Basic ACL).
2. Configure rules in ACL 2000 (up to 16 rules can be configured per ACL), for example: rule 1 deny source any
The meaning of this command is to create a rule with id 1 and discard all incoming packets.
3. Installation, that is, application, such as: packet filter inbound 2000 rule id 1 port ge 1
This command requires exiting the ACL 2000 interface and configuring it in global mode, which means installing the corresponding Rule 1 in ACL 2000 on the GE1 port of the OLT. At this time, all packets entering the GE1 port of the OLT will be discarded.
The above is a brief overview of ACL instruction list software technology, which can be used as a reference for everyone. Our company has a strong software and hardware technical team, which can provide professional technical services to customers. Our best-selling products cover various types of ONU series products, including AC ONU/communication ONU/intelligent ONU/box ONU, etc. The above ONU series products can be used for network needs in various scenarios.