ProCurve 2610 - Configuring Port-Based and User-Based Access Control (802.1 X); Overview; Why Use Port-Based or User-Based Access Control?; General Features

To Next Page

To Previous Page

Managing ACL Resource Consumption . . . . . . . . . . . . . . . . . . . . . . . . 9-18

Traffic Management and Improved Network Performance . . . . . . . . . . . 9-22

Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-22

Guidelines for Planning the Structure of an ACL . . . . . . . . . . . . . . . . 9-23

ACL Configuration and Operating Rules . . . . . . . . . . . . . . . . . . . . . . . 9-24

How an ACE Uses a Mask To Screen Packets for Matches . . . . . . . . 9-25

Configuring and Assigning an ACL . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-32

Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-32

ACL Configuration Structure . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-33

ACL Configuration Factors . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-36

Using the CLI To Create an ACL . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-38

Configuring and Assigning a Numbered, Standard ACL . . . . . . . . . . 9-39

Configuring and Assigning a Numbered, Extended ACL . . . . . . . . . . 9-44

Configuring a Named ACL . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-50

Enabling or Disabling ACL Filtering on an Interface . . . . . . . . . . . . . 9-52

Deleting an ACL from the Switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-53

Displaying ACL Data . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-54

Display an ACL Summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-54

Display the Content of All ACLs on the Switch . . . . . . . . . . . . . . . . . . 9-55

Display the ACL Assignments for an Interface . . . . . . . . . . . . . . . . . . 9-56

Displaying the Content of a Specific ACL . . . . . . . . . . . . . . . . . . . . . . 9-57

Displaying the Current ACL Resources . . . . . . . . . . . . . . . . . . . . . . . . 9-59

Display All ACLs and Their Assignments in

the Switch Startup-Config File and Running-Config File . . . . . . . . . . 9-60

Editing ACLs and Creating an ACL Offline . . . . . . . . . . . . . . . . . . . . . . . . . 9-60

Using the CLI To Edit ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-60

Working Offline To Create or Edit an ACL . . . . . . . . . . . . . . . . . . . . . 9-63

Enable ACL “Deny” Logging . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-67

Requirements for Using ACL Logging . . . . . . . . . . . . . . . . . . . . . . . . . . 9-67

ACL Logging Operation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-67

Enabling ACL Logging on the Switch . . . . . . . . . . . . . . . . . . . . . . . . . . 9-68

Operating Notes for ACL Logging . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-70

General ACL Operating Notes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-71

Related product manuals