HP 7102dl - ProCurve Secure Router Configuration Manual page 247
Procurve secure router 7000dl series - advanced management and configuration guide
Hide thumbs
Also See for 7102dl - ProCurve Secure Router:
- Reference manual (1455 pages) ,
- Product end-of-life disassembly instructions (2 pages) ,
- Advanced management and configuration manual (1005 pages)
Table of Contents
Advertisement
Table 5-5.
Specifying Ports in Extended ACLs
Option
eq <port number>
gt <port number>
lt <port number>
range <first port number last port number>
neq <port number>
To view a list of well-known ports, enter the
port commands (such as eq, gt, or neq). The list of options is displayed in
alphabetical order.
You can enter one of the ports listed by the CLI or the corresponding number.
For example, the following commands perform the same function:
ProCurve(config-ext-nacl)# permit tcp host 192.168.1.11 eq 80 any
or
ProCurve(config-ext-nacl)# permit tcp host 192.168.1.11 eq www any
Specifying Bits in the Packets. To protect your network against attacks
and hackers scanning your network for information, you can block packets
based on certain bits set in the packet. You can specify the following bits:
ack
fin
psh
rst
syn
urg
Selecting the log Option. Include the log option if you want the Secure
Router OS to log a message when these two conditions are met:
debug access-list is enabled for this ACL
a packet matches this ACL
Applying Access Control to Router Interfaces
Using ACLs Alone to Configure Access Control
Meaning
matches a specific port
matches all ports that are a larger number
than the port number you specify (not
including the specified port)
matches all ports that are a smaller number
than the port number you specify (not
including the specified port)
matches the range of ports you specify
matches all ports except the port number
you specify
help command after one of the
?
5-15
- Quick Links:
- Procurve Secure Router
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
