About Access Control Lists
Packet filtering allows you to limit network traffic and restrict network use by certain users or devices. Access control list (ACL), filters traffic as it passes through a switch and permit or deny packets crossing specified interfaces. An ACL is a sequential collection of permit and deny conditions that apply to packets. When a packet is received on an interface, the switch compares the fields in the packet against any applied ACLs to verify that the packet has the required permissions to be forwarded.
You can use ACLs to protect networks and specific hosts from unnecessary or unwanted traffic. For example, you could use ACLs to disallow HTTP traffic from a high-security network to the Internet. You could also use ACLs to allow HTTP traffic but only to specific sites, using the IP address of the site to identify it in an IP ACL.
In Cisco UCS Director, you can configure ACLs on the following Cisco network devices:
- Cisco Nexus 9300 and 9500 Series switches firewall
- Cisco IOS Devices
In Cisco UCS Director, you can configure context ACLs on the following Cisco network devices:
- Cisco ASA 5500 Series firewall
- Cisco Adaptive Security Virtual Appliance (ASAv)