Login

 

Agilent N2X

-
Multi-services test solution

Download

Name: Testing Access Control Lists  pdf
Type: Application Note
Size
: 935 KB
Date: 21 June 2004

 

If required, Download Acrobat Reader to view this file.
Get Adobe Acrobat Reader

Overview

Testing Access Control Lists

Test your router’s access control lists with Agilent’s multi-port Packets and Protocols Application. Access control lists (ACLs) serve as filters for controlling the traffic that enters or leaves a router’s interfaces. Primarily implemented for security reasons, ACLs instruct a router to block or forward traffic based on specific criteria, such as a packet’s source or destination address or an encapsulated upper-layer application, as indicated by the TCP port number.

ACLs are configured in firewall routers, border routers, or any intermediate router that needs to filter traffic. Separate lists are required for each network protocol the router supports, and each list contains multiple filter terms which must be tested to ensure that the router’s interfaces drop or forward all matching packets accordingly.

With Agilent’s N2X, you can quickly generate the right traffic to verify your router’s access control capabilities. This application note explains how to define streams that match specific ACL statements, then measure how well your device can apply these filter terms under realistic traffic loads.

Testing network devices has never been easier!

  • Fine-grained measurements on up to 32k customers or services
  • Quick and easy stream creation
  • Powerful PDU builder designed for future flexibility
 

Network Services Infrastructure Devices Under Test Technology Industry Solutions