HP PROCURVE 2910AL

To Next Page

To Previous Page

IPv4 Access Control Lists (ACLs)

Contents

Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-4

What Is the Difference Between Network (or Subnet)

Rules for Defining a Match Between a Packet and an

Overview of Options for Applying IPv4 ACLs on the Switch . . . . . . 9-6

Static ACLS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-6

Dynamic Port ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-6

Terminology . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-10

Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-14

Types of IPv4 ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-14

ACL Applications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-14

Static Port ACL and Dynamic Port ACL Applications . . . . . . . . . 9-15

Dynamic (RADIUS-assigned) Port ACL Applications . . . . . . . . . 9-15

Multiple ACLs on an Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-16

Features Common to All ACL Applications . . . . . . . . . . . . . . . . . . . . . 9-16

General Steps for Planning and Configuring ACLs . . . . . . . . . . . . . . . 9-18

IPv4 Static ACL Operation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-20

Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-20

The Packet-filtering Process . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-20

Planning an ACL Application . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-24

IPv4 Traffic Management and Improved Network Performance . . . 9-24

Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-25

Guidelines for Planning the Structure of a Static ACL . . . . . . . . . . . . 9-26

IPv4 ACL Configuration and Operating Rules . . . . . . . . . . . . . . . . . . . 9-27

How an ACE Uses a Mask To Screen Packets for Matches . . . . . . . . 9-28

Masks and the Masks Used with ACLs? . . . . . . . . . . . . . . . . . . . . 9-28

Access Control Entry (ACE) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-29

9-1

Other manuals for HP PROCURVE 2910AL