I updated my switches (incl. a SX3008F) and controller over the weekend to 1.20.2 Build 20241206 Rel.39596.

I saw the below in the firmware release notes:

Note: If you saved the configuration before an upgrade and only configured ACL permit entries for login access control, after the upgrade, DHCP and ARP packets not included in the ACL whitelist will be dropped, preventing interaction with uplink and downlink devices, and causing users unable to obtain dynamic IP addresses for Internet access. The solution is to configure two rules:

1. A MAC/Combine ACL permit rule for type 0806 to allow ARP packets.

2. A MAC/Combine ACL permit rule for source MAC equals to the MAC address of DHCP server to allow the packets sent by the DHCP server.

What protocols do I select when creating a new switch ACL role, in order to implement (1)? Is it ICMP and UDP?