Configuring Switch Information 245The following is an example of the CLI commands:Defining IP based ACLsAccess control lists (ACL) allow network managers to define classification actions and rules forspecific ingress ports. Your switch supports up to 1,024 ACLs. Packets entering an ingress port, withan active ACL, are either admitted or denied entry and the ingress port is disabled. If they aredenied entry, the user can disable the port.For example, a network administrator defines an ACL rule that says, port number 20 can receiveTCP packets, however, if a UDP packet is received, the packet is dropped.ACLs are composed of access control entries (ACEs) that are made of the filters that determinetraffic classifications. The total number of ACEs that can be defined in all ACLs together is 1024.Use the Add ACE to IP Based ACL page to define IP-based ACEs.To open the Add ACE to IP Based ACL page, select Switch→Network Security→IP Based ACL.Console(config)# interface ethernet g1Console(config-if)# port security forward trap 100Console(config-if)# exitConsole(config)# exitConsole# show ports securityPort status Action Trap Frequency Counter---- ------ ------ ---- --------- -------g1 Locked Forward Enabled 100 0g2 Unlocked - - - -...g24 Unlocked - - - -ch1 Unlocked - - - -...ch7 Unlocked - - - -