For more details, please see ourCookie Policy.

Ethernet Switches & Routers

Regular Visitor
Posts: 1
Registered: ‎08-10-2016

I need to create an ACL

[ Edited ]

Hello all and thanks for taking the time to check this out. I appreciate any assistance anyone can offer.


The ACL is probably very simple for most of you.

Okay...I have a VoiP phone with Ip address on VLAN 40

I need to block all outgoing traffic on the phone to the call manager at, but still allow incoming traffic.

Thats it. 

If you can help, could you explain the logic in your rule? I need to know the syntax and the flow of the rule.


You don't have to include the logic part, just the acl rule will be okay, but if you have the time to include it , great.



Former Brocadian
Posts: 238
Registered: ‎06-30-2010

Re: I need to create an ACL


Firstly permit access call manager to host

permit ip host host

Then permit responses back from the host to call manager (allow Acknowledgment (ACK) or Reset (RST) will not allow SYN)

permit tcp host host established gt 1023

Then deny all other from host to call manager

deny ip host host

Allow everything else (if required)

permit ip any any


This will only allow TCP connections to host from call manager (for UDP this would need to be modified)


Also worth checking that phone does not need to make specific connections to the call manager, if it does ACL would need to be modified accordingly


Hope this helps


If my response has solved your query please click the "Accept as Solution" button.

Any and all information provided by me is not reviewed, approved or endorsed by Brocade and is provided solely as a convenience for Brocade customers.

All systems and all networks are different and unique. If you have a service affecting network problem, please open a TAC service request for service through Brocade, or through your OEM equipment provider.

Join the Community

Get quick and easy access to valuable resource designed to help you manage your Brocade Network.