Configuring And Assigning An Acl; Overview; General Steps For Implementing Acls; Types Of Acls - HP ProCurve 5300xl Series Management Manual

Caution Regarding
the Use of Source
Routing
Access Control Lists (ACLs) for the Series 3400cl and Series 6400cl Switches

Configuring and Assigning an ACL

ACL Feature
Configuring and Assigning a Numbered, Standard ACL
Configuring and Assigning a Numbered, Extended ACL
Configuring a Named ACL
Enabling or Disabling ACL Filtering

Overview

General Steps for Implementing ACLs

1. Configure at least one ACL. This creates and stores the ACL in the switch
configuration.
2. Assign an ACL. This applies the ACL to the inbound traffic on one or more
designated interfaces.
Source routing is enabled by default on the switch and can be used to override
ACLs. For this reason, if you are using ACLs to enhance network security, the
recommended action is to disable source routing on the switch. To do so,
execute no ip source-route.

Types of ACLs

■ Standard ACL: Uses only a packet's source IP address as a criterion
for permitting or denying the packet. For a standard ACL ID, use either
a unique numeric string in the range of 1-99 or a unique name string
of up to 64 alphanumeric characters.
Extended ACL: Offers the following criteria as options for permit­
■
ting or denying a packet:
• Source IP address
• Destination IP address
• TCP or UDP criteria
For an extended ACL ID, use either a unique number in the range of 100-
199 or a unique name string of up to 64 alphanumeric characters.

Configuring and Assigning an ACL

Page
10-43
10-48
10-54
10-57
10-35