Dell PowerConnect 55xx Systems User Guide 31FILE LOCATION: C:\Users\gina\Desktop\Checkout_new\Maintenance Projects\DellContax\sources\CxUGFeatures.fmD E L L C O N F I D E N T I A L – P R E L I M I N A R Y 1 0 / 3 0 / 1 3 - F O R P R O O F O N LYAccess Control Lists (ACL)Access Control Lists (ACL) enable network managers to define classificationactions and rules for specific ingress ports. Packets entering an ingress portwith an active ACL, are either admitted or denied entry and the ingress port isdisabled. If they are denied entry, the user can disable the port.Dynamic ACL/Dynamic Policy Assignment (DACL/DPA)The network administrator can specify the user's ACL in the RADIUS server.After successful authentication, the user is assigned that ACL.For more information, see "Network Security" on page 97.DHCP SnoopingDHCP Snooping expands network security by providing firewall securitybetween untrusted interfaces and DHCP servers. By enabling DHCPSnooping, network administrators can differentiate between trustedinterfaces connected to end-users or DHCP servers and untrusted interfaceslocated beyond the network firewall.For more information, see "DHCP Snooping" on page 574.ARP InspectionDynamic ARP inspection is a security feature that validates ARP packets in anetwork. It intercepts, logs, and discards ARP packets with invalid IP-to-MACaddress bindings. This capability protects the network from certain man-in-the-middle attacks.Port Profile (CLI Macro)Macros provide a convenient way to save and share a common configuration.A macro is a set of CLI commands with a unique name. When a macro isapplied to a port, the CLI commands contained within it are executed andadded to the Running Configuration file.For more information, see "Dynamic ARP Inspection" on page 561.