Acl Configuration Examples; Interface-Based Packet Filter Configuration Example - HP FlexNetwork MSR Series Configuration Manuals

Comware 7 acl and qos

Hide thumbs Also See for FlexNetwork MSR Series:

Configuration manual (392 pages)

Command reference manual (1005 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

page of 159

/ 159
Contents
Table of Contents
Bookmarks

Table of Contents

Task

Display detailed ACL packet filtering

information

standalone mode).

Display detailed ACL packet filtering

information

standalone mode/centralized devices in

IRF mode).

Display detailed ACL packet filtering

information (distributed devices in IRF

mode).

Clear ACL statistics.

Clear

match

accumulated statistics) and default action

statistics for packet filtering ACLs.

ACL configuration examples

Interface-based packet filter configuration example

Network requirements

A company interconnects its departments through the device. Configure a packet filter to:

•

Permit access from the President's office at any time to the financial database server.

•

Permit access from the Financial department to the database server only during working hours

(from 8:00 to 18:00) on working days.

•

Deny access from any other department to the database server.

(centralized

devices

(distributed

devices

statistics

(including

Command

display packet-filter verbose { interface interface-type

interface-number { inbound | outbound } [ [ ipv6 | mac ]

{ acl-number | name acl-name } ] | zone-pair security

source

destination-zone-name [ [ ipv6 ] { acl-number | name

acl-name } ] }

display packet-filter verbose { interface interface-type

interface-number { inbound | outbound } [ [ ipv6 | mac ]

{ acl-number | name acl-name } ] | zone-pair security

source

destination-zone-name [ [ ipv6 ] { acl-number | name

acl-name } ] } [ slot slot-number ]

display packet-filter verbose { interface interface-type

interface-number { inbound | outbound } [ [ ipv6 | mac ]

{ acl-number | name acl-name } ] | zone-pair security

source

destination-zone-name [ [ ipv6 ] { acl-number | name

acl-name } ] } [ chassis chassis-number slot slot-number ]

reset acl [ ipv6 | mac ] counter { acl-number | all | name

acl-name }

reset packet-filter statistics { interface [ interface-type

interface-number ] { inbound | outbound } [ default | [ ipv6 |

the

mac ] { acl-number | name acl-name } ] | zone-pair security

[

source

destination-zone-name ] [ [ ipv6 ] { acl-number | name

acl-name } ] }

source-zone-name

destination

Table of Contents

Acl Configuration Examples; Interface-Based Packet Filter Configuration Example - HP FlexNetwork MSR Series Configuration Manuals

ACL configuration examples

Interface-based packet filter configuration example

Related Manuals for HP FlexNetwork MSR Series

Related Content for HP FlexNetwork MSR Series

Table of Contents