Download Print this page

Enabling, Disabling, And Displaying Acls; Creating, Entering, And Configuring An Acl - HP 2530 Manual Supplement

Hide thumbs Also See for 2530:

Quick setup manual (6 pages)

,

Quick setup manual (9 pages)

,

Installation and getting started manual (93 pages)

Table Of Contents

Table of Contents

Advertisement

Task

Deleting an ACE from an existing

ACL

Resequence the ACEs in an ACL

Enter a remark

Remove a remark:

Immediately after entry

After entry of an ACE

Delete an IPv6 ACL

1

TCP only

2

TCP flag (control bit) options for destination TCP

3

The log function applies to both "deny" and "permit" ACLs, and generates a message when there is either a "deny"

match or a "permit" match.

Enabling, disabling, and displaying ACLs

Task

Enable or disable an IPv6 VACL

Enable or disable a static port ACL

Displaying ACL configuration data

Creating, entering, and configuring an ACL

For a match to occur with an ACE, a packet must have the source and destination IPv6 address

criteria specified by the ACE.

Use the following steps to create or add to an ACL:

1.

Create and/or enter the context of a given ACL.

2.

Enter the first ACE in a new ACL, or append an ACE to the end of an ACL.

Syntax: (ipv6 ACL context)

ipv6 access-list <ascii-str>

Example

The deny and permit keywords use the options shown above for "Create

an IPv6 ACL".

HP Switch(config)# ipv6 access-list <name-str>

HP Switch(config-ipv6-acl)# no <seq-#> [remark]

NOTE:

You can also delete an ACE by entering no <permit|deny>

followed by the settings explicitly configured for that ACE.

HP Switch(config)# ipv6 access-list resequence

<name-str>

<starting-#> <increment>

HP Switch(config)# ipv6 access-list <name-str>

HP Switch(config-ipv6-acl)# remark <remark-str>

HP Switch(config-ipv6-acl)# no remark

HP Switch(config-ipv6-acl)# no <seq-#> remark

HP Switch(config)# no ipv6 access-list <name-str> vlan

HP Switch(config)# no ipv6 access-list <name-str>

Example

HP Switch(config)# [no] vlan <vid> ipv6 access-group

<name-str> vlan

HP Switch(config)# [no] interface

ipv6 access-group <name-str> in

HP Switch (eth- <port-list) | trkx>)# [no] ipv6

access-group <name-str> in

HP Switch# show access-list

HP Switch# show access-list <acl-name-str> [config]

HP Switch# show access-list config

HP Switch# show access-list ports

HP Switch# show access-list vlan <vid>

HP Switch# show access-list radius

all>

HP Switch# show access-list resources

Page

89

90

91

86

Page

<port-list | trkx>

94

<port-list | trkx>

<port-list> |

Configuration commands

81

Table of Contents

Show Quick Links

Hide quick links:

Advertisement

Table of Contents