Dynamic port ACLs

A dynamic port ACL is configured on a RADIUS server for assignment to a given port when the server authenticates a specific client on that port. When the server authenticates a client associated with that ACL, the ACL is assigned to the port the client is using. The ACL then filters the IP traffic received inbound on that port from the authenticated client. When the client session ends, the ACL is removed from the port. The switch allows as many dynamic port ACLs on a port as it allows authenticated clients.


The information provided here describes the IPv4 ACL applications you can statically configure on the switch. For information on dynamic port ACLs assigned by a RADIUS server, see .