1. Manuals
  2. Brands
  3. HP Manuals
  4. Switch
  5. ProCurve 6208M-SX
  6. Installation and getting started manual

HP PROCURVE 6208M-SX Installation And Getting Started Manual page 61

Hewlett-packard switch user manual
Hide thumbs Also See for PROCURVE 6208M-SX:
Table of Contents

Advertisement

Installation and Getting Started Guide
Using an ACL to Restrict Telnet Access
To configure an ACL that restricts Telnet access to the device, enter commands such as the following:
HP9300(config)# access-list 10 deny host 209.157.22.32 log
HP9300(config)# access-list 10 deny 209.157.23.0 0.0.0.255 log
HP9300(config)# access-list 10 deny 209.157.24.0 0.0.0.255 log
HP9300(config)# access-list 10 deny 209.157.25.0/24 log
HP9300(config)# access-list 10 permit any
HP9300(config)# telnet access-group 10
HP9300(config)# write memory
Syntax: telnet access-group <num>
The <num> parameter specifies the number of a standard ACL and must be from 1 – 99.
The commands above configure ACL 10, then apply the ACL as the access list for Telnet access. The device
allows Telnet access to all IP addresses except those listed in ACL 10.
To configure a more restrictive ACL, create permit entries and omit the permit any entry at the end of the ACL.
For example:
HP9300(config)# access-list 10 permit host 209.157.22.32
HP9300(config)# access-list 10 permit 209.157.23.0 0.0.0.255
HP9300(config)# access-list 10 permit 209.157.24.0 0.0.0.255
HP9300(config)# access-list 10 permit 209.157.25.0/24
HP9300(config)# telnet access-group 10
HP9300(config)# write memory
The ACL in this example permits Telnet access only to the IP addresses in the permit entries and denies Telnet
access from all other IP addresses.
Using an ACL to Restrict Web Management Access
To configure an ACL that restricts Web management access to the device, enter commands such as the following:
HP9300(config)# access-list 12 deny host 209.157.22.98 log
HP9300(config)# access-list 12 deny 209.157.23.0 0.0.0.255 log
HP9300(config)# access-list 12 deny 209.157.24.0/24 log
HP9300(config)# access-list 12 permit any
HP9300(config)# web access-group 12
HP9300(config)# write memory
Syntax: web access-group <num>
The <num> parameter specifies the number of a standard ACL and must be from 1 – 99.
These commands configure ACL 12, then apply the ACL as the access list for Web management access. The
device denies Web management access from the IP addresses listed in ACL 12 and permits Web management
access from all other IP addresses. Without the last ACL entry for permitting all packets, this ACL would deny
Web management access from all IP addresses.
NOTE: In this example, the command web access-group 10 could have been used to apply the ACL configured
in the example for Telnet access. You can use the same ACL multiple times.
Using ACLs to Restrict SNMP Access
To restrict SNMP access to the device using ACLs, enter commands such as the following:
NOTE: The syntax for using ACLs for SNMP access is different from the syntax for controlling Telnet and Web
management access using ACLs.
HP9300(config)# access-list 25 deny host 209.157.22.98 log
HP9300(config)# access-list 25 deny 209.157.23.0 0.0.0.255 log
HP9300(config)# access-list 25 deny 209.157.24.0 0.0.0.255 log
3 - 4

Advertisement

Table of Contents
loading

Related Manuals for HP PROCURVE 6208M-SX

Related Products for HP PROCURVE 6208M-SX

This manual is also suitable for:

Procurve 1600m

Table of Contents