Acl Configuration Structure - HP ProCurve 6120G/XG Manual
Hp procurve series 6120 blade switches access security guide
Hide thumbs
Also See for ProCurve 6120G/XG:
- Configuration manual (662 pages) ,
- Manual (469 pages) ,
- Management manual (222 pages)
Table of Contents
Advertisement
IPv4 Access Control Lists (ACLs)
Configuring and Assigning an ACL
You should carefully plan your ACL application before configuring specific
ACLs. For more on this topic, refer to "Planning an ACL Application" on page
9-17.
ACL Configuration Structure
After you enter an ACL command, you may want to inspect the resulting
configuration. This is especially true where you are entering multiple ACEs
into an ACL. Also, it will be helpful to understand the configuration structure
when using later sections in this chapter.
The basic ACL structure includes three elements:
1. ACL type and name: This identifies the ACL as standard or extended and
2. One or more deny/permit list entries (ACEs): One entry per line.
3. Implicit deny any: Where an ACL is in use, the switch denies any packets
9-34
shows the ACL name.
Element
ID Range
Minimum ACEs per ACL
Maximum ACEs Per ACL
Maximum ACEs per
Switch
that do not have a match with the ACEs explicitly configured in the ACL.
The implicit deny any does not appear in ACL configuration listings, but
always functions when the switch uses an ACL to filter packets. (You
cannot delete the implicit "deny any", but you can supersede it with a
"permit any" statement.)
Stnd
Ext
Notes
1 - 99 100 - 199 You can also use an alphanumeric name
of up to 64 characters, including spaces.
1
120
1024
In some cases, rule usage by ACLs may
consume available resources to the point
where this limit cannot be reached.
Hide quick links:
Advertisement
Table of Contents
