Multiple ACLs on an interface

The switch allows multiple ACL applications on an interface (subject to internal resource availability). This means that a port belonging to a given VLAN "X" can simultaneously be subject to all of the following:

  • One static port ACL for any IPv4 or IPv6 traffic entering the switch on the port.

  • One static VACL for IPv4 or IPv6 traffic for VLAN “X” entering the switch on the port.

  • One dynamic (RADIUS-assigned) port ACL applied to inbound IPv4 traffic for each authenticated client on the port.