Access Control Lists (ACLs) for the Series 3400cl and Series 6400cl Switches
Editing ACLs and Creating an ACL Offline
2. After you copy the above .txt file to a TFTP server the switch can access,
you would then execute the following command to download the file to
the switch’s startup-config file:
Figure 10-30. Example of Using “copy tftp command-file” To Configure an ACL in the Switch
Note If a transport error occurs, the switch does not execute the command and the
ACL is not configured.
3. Next, assign the new ACL to the intended interface which, in this example,
is for port 2.
HPswitch(config)# interface 2 access-group 160 in
4. Inspect the effect of the ACL on the switch’s per-port resources.
ACL 160 used six per-port rules and 5 ACL masks on port 2. This means that ACL 160 could be
replaced with a larger ACL that uses up to three more masks. The switch reserves eight masks
per-port for ACL and IGMP use. (When enabled in a VLAN, IGMP uses one mask per-port on all
ports on the switch.)
Figure 10-31. Inspection of Per-Port Resource Usage After Assigning an ACL
5. Inspect the new running configuration:
10-70
To Next Page
Loading...
Need help?
General