Access control lists (ACLs) are used to identify flows. A network device filters packets according to certain rules. It must identify packets first, and then permits or denies the packets according to the configured policy.
Interface ACL
You can apply an ACL to an interface to filter the packets received by the interface.
VLAN ACL
You can apply an ACL to a VLAN to filter the VLAN packets.