Home > Switches > Layer 3 Switching > Configuring ACLs

Configuring ACLs

Information About ACLs

Access Control Lists (ACLs) are an ordered set of rules that you can use to filter traffic. Each rule specifies a set of conditions that a packet must satisfy to match the rule. When the switch determines that an ACL applies to a packet, it tests the packet against the conditions of all rules. The first match determines whether the packet is permitted or denied. If there is no match, the switch applies the applicable default rule. 
 
With Meraki, you only have to define an ACL once in a network and it will be propagated to all switches within that network. Additionally, the default rule for Meraki ACLs is "Permit Any Any".

 

For more detailed information and examples of ACLs, see our MS Switch ACL Operation article.

ACL Location in Meraki Dashboard

To configure an ACL from the Meraki dashboard, navigate to Switch > Configure > ACL.

 

2019-06-25_Configure_ACLs_Location.png

Initial Setup

Upon initial setup, you will see that the explicit "Permit Any Any" rule is defined by default.

 

2019-06-25_Configure_ACLs_Initial_Configuration.png

Add a Rule

To add a new rule, select the Add a rule button below the list of ACL rules.

2019-06-25_Configure_ACLs_Add_Rule.png

Edit a Rule

For each ACL rule, you can define the policy, IP version, source IP address or subnet, source port, destination IP address or subnet, destination port, and VLAN. You also have the option to describe the rule in a comment section.

2019-06-25_Configure_ACLs_Example_Rule.png

The source and destination addresses must be an IP address or subnet in CIDR form (e.g. '192.168.1.0/24'), or 'any'.

Move a Rule

To change the position of a specific rule in the ACL, select the crossed arrows symbol to the right of the rule and drag the rule up or down the list.

2019-06-25_Configure_ACLs_Move.png

Remove a Rule

To delete a rule from the ACL, select the x symbol to the far right of the rule.

2019-06-25_Configure_ACLs_Delete.png

Save Changes to an ACL

To save changes to the ACL rules, select the Save button below the ACL.

2019-06-25_Configure_ACLs_Save.png

The Save button will be surrounded by an amber bar if there are unsaved changes on the page.

It may take 1-2 minutes for the changes to the ACL to propagate from the Meraki dashboard to the switches in your network.

Last modified

Tags

Classifications

This page has no classifications.

Explore the Product

Click to Learn More

Article ID

ID: 4466

Explore Meraki

You can find out more about Cisco Meraki on our main site, including information on products, contacting sales and finding a vendor.

Explore Meraki

Contact Support

Most questions can be answered by reviewing our documentation, but if you need more help, Cisco Meraki Support is ready to work with you.

Open a Case

Ask the Community

In the Meraki Community, you can keep track of the latest announcements, find answers provided by fellow Meraki users and ask questions of your own.

Visit the Community