Access Control Lists: ACLs
Use the Security > Access Control Lists > ACLs options to compile and manage the rules that define inbound and outbound access for network hosts and services.
Each ACL consists of one or more access control entries (ACEs). You need to complete the following tasks to configure ACLs:
- Configure entries for each network and host requiring an ACL.
- Configure entries for any network services requiring an ACL.
- Create an ACL.
This section includes the following topics:
Adding an ACL
Procedure
- Log into System Manager.
- Go to Security > Access Control Lists > ACLs.
- Click Add to open the Add ACL window.
-
Complete the form with the following information:
- Name: Enter a name to use to identify this ACL.
- Description: Enter additional text provide supporting information about this ACL.
- Click Submit to enable the lower portion of the window and continue.
-
Click Add to add an access control entry (ACE) to the ACL.
Each ACE consists of a combination of the network hosts and services you configured for use in ACLs.
-
Modify one or more of the fields, as necessary.
Refer to Add ACE window for details.
- Click Apply > OK.
Add ACE window
The following table summarizes fields and descriptions in the Add ACE window:
Fields |
Description |
Source Network |
Select the network from which access will originate. This list is populated with the networks and hosts you created for use with ACLs. See “Access Control Lists: Networks and Hosts” on Access Control Lists: Networks and Hosts. |
Destination Network |
Select the network being accessed. This list is populated with the networks and hosts you created for use with ACLs. See “Access Control Lists: Networks and Hosts” on Access Control Lists: Networks and Hosts. |
Service |
Select the network service to which this entry permits or denies access. This list is populated with the services you created for use with ACLs. See “Access Control Lists: Network Services” on Access Control Lists: Network Services. |
Action |
Select Permit or Deny from the drop down list. |
Connections Per Minute |
Enter the number of connections to allow per minute. |
Description |
Enter text to describe the purpose of this entry. |
Editing an ACL
Procedure
- Log into System Manager.
- Go to Security > Access Control Lists > ACLs.
-
Complete one or more of the following modifications to the ACE:
- Delete: Select an ACE and click Delete.
- Add: Click Add to add an ACE.
- Insert: Select the ACE above the new ACE and click Insert.
- Click Apply > OK.
Copying an ACL
Procedure
To start a new ACL based on an existing one:
- Log into System Manager.
- Go to Security > Access Control Lists > ACLs.
- Select the ACL you want to copy.
- Click the Copy button.
- Enter a name for the new ACL.
- Click OK > OK.
Deleting an ACL
Procedure
- Log into System Manager.
- Go to Security > Access Control Lists > ACLs.
- Select one or more of the check boxes next to an ACL you want to delete.
- Click Delete > Yes.