IPv4 Access Control Lists (ACLs)
Editing ACLs and Creating an ACL Offline
2. After you copy the above .txt file to a TFTP server the switch can access,
you would then execute the following command to download the file to
the switch’s startup-config file:
Figure 9-28. Example of Using “copy tftp command-file” To Configure an ACL in the Switch
Note If a transport error occurs, the switch does not execute the command and the
ACL is not configured.
3. Next, assign the new ACL to the intended interface which, in this example,
is for port 2.
ProCurve(config)# interface 2 ip access-group 160 in
4. Inspect the effect of the ACL on the switch’s resources.
ProCurve(config)# show access-list resources
Policy Engine Resource Usage
Rules Rules Group
Group Allocated Used Number
------------------------+------------+------------+------------+
QoS | 0 | 0 | 1 |
CLI-ACL | 19 | 19 | 2 |
IDM-ACL | 128 | 0 | 3 |
Free | 109 |
Figure 9-29. Inspection of Resource Usage After Assigning an ACL
5. Inspect the new running configuration:
ProCurve(config)# show running
9-67
To Next Page
Loading...
