Home à Access List Items à ACLs and Traffic Flow
Desert View Access Control Lists and Traffic Flow
Placing an ACL on ingoing traffic from the curriculum network on the Desert View router will have a positive effect on network traffic by limiting what kind of traffic is allowed to leave the curriculum network. Only the following types of curriculum requests will be permitted on the Desert View LAN and the district network:
- HTTP – Web site requests to the administrative network and the Internet
- FTP – File transfer requests to the administrative network and the Internet
- SMTP – Sending email to the mail server on the administrative network
- POP – Retrieving email from the mail server on the administrative network
- DNS – Domain name resolution requests to the name server on the administrative network
- SNMP – For collecting network management information on the management server on the administrative network
- Traffic to the library server on the administrative network
In addition, an ACL will be placed on the interface connected to the administrative network, blocking all IPX traffic going out onto the network. Provided that all other schools implement their access control lists in the same way, this will prevent curriculum users from accessing the administrative networks, preserving bandwidth on the LAN. It will also preserve bandwidth on the district network as a whole, as only two types of traffic, web site requests and FTP requests, will be allowed to exit the Desert View network and enter the WAN core.