Editing Acls - HP procurve 8100fl series Management And Configuration Manual

Editing ACLs

To modify an ACL, edit it using a text editor on a remote workstation and
upload it to the switch using TFTP. (You cannot edit existing ACLs from the
CLI.) Edit, delete, replace, or reorder ACL rules and match criteria in a text
file. The following example describes how to use this method to affect ACLs
on the switch.
Suppose that ACL 104 is defined and applied to an interface on the switch, the
following steps are performed to change the ACL using a text editor.
1. Use the no command to remove the definition and all references to ACL
104:
ProCurve(config)#no access-list 104
2. On a workstation, enter the new ACL rules and references into the text
file. In this example the text file is named acl.changes, which contains the
changes to ACL 104 and its application to the GigabitEthernet interface:
access-list 104 deny tcp 10.11.0.0/16 10.12.0.0/16
access-list 104 permit tcp 10.11.0.0 any
interface gigabitethernet 4/1
access-list vlan 4098 in
3. Once you place the file acl.changes on a TFTP server (for example) that
is reachable by the switch, and upload it to the switch, the changes are
copied to the running configuration using the following command:
ProCurve#copy tftp://10.1.1.12/config/acl.changes to running-config
The copy command makes the changes take effect by copying them into
the running configuration.
Access Control Lists (ACLs)

Editing ACLs

15-9