EasyManua.ls Logo

HP ProCurve 5308xl - Page 415

HP ProCurve 5308xl
664 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Access Control Lists (ACLs) for the Series 3400cl and Series 6400cl Switches
Introduction
Table 10-1. Comprehensive Command Summary
Action Command Page
Configuring Standard HPswitch(config)# [no] access-list < 1-99 > < deny | permit >
10-43
(Numbered) ACLs
< any | host <src-ip-addr > | src-ip-address/mask >
1
[log]
2
Configuring Extended HPswitch(config)# [no] access-list <100-199> < deny | permit >
10-48
(Numbered) ACLs
ip < any | host <src-ip-addr > | src-ip-address/mask >
1
[log]
2
HPswitch(config)# [no] access-list < 100-199 > < deny | permit >
10-48
< tcp | udp >
< any | host <src-ip-addr > | src-ip-address/mask >
1
[eq < src-port tcp/udp-id >]
< any | host <dest-ip-addr > | dest-ip-address/mask >
1
[eq < dest-port tcp/udp-id >]
[log]
2
Configuring Standard HPswitch(config)# [no] ip access-list standard < name-str | 1-99 > 10-54
(Named) ACLs
HPswitch(config-std-nacl)# < deny | permit >
10-54
< any | host <src-ip-addr > | src-ip-address/mask >
1
[log]
2
Configuring Extended HPswitch(config)# [no] ip access-list extended < name-str | 100-199 > 10-54
(Named) ACLs
HPswitch(config-std-nacl)# < deny | permit > ip
10-54
< any | host <src-ip-addr > | src-ip-address/mask >
1
< any | host <dest-ip-addr > | dest-ip-address/mask >
1
[log]
2
HPswitch(config-std-nacl)# < deny | permit > < tcp | udp >
10-54
< any | host <src-ip-addr > | src-ip-address/mask >
1
[ eq < tcp/udp-port-# | well-known-port-name >]
< any | host <dest-ip-addr > | dest-ip-address/mask >
1
[ eq < tcp/udp-port-# | well-known-port-name >]
[log]
2
Enabling or Disabling HPswitch(config)# [no] interface < port-list > access-group 10-57
an ACL < name-str | 1-99 | 100-199 > in
Deleting an ACL from HPswitch(config)# no ip access-list < standard < name-str | 1-99 >> in 10-58
the Switch
HPswitch(config)# no ip access-list < extended < name-str | 100 -199 >> in
1
The mask can be in either dotted-decimal notation (such as 0.0.15.255) or CIDR notation (such as /20).
2
The [log] function applies only to “deny” ACLs, and generates a message only when there is a “deny” match.
10-5

Table of Contents

Related product manuals