Acl Configuration Example; Network Requirements; Configuration Procedure - HP MSR4080 Configuration Manual
Acl and qos
Hide thumbs
Also See for MSR4080:
- Command reference manual (471 pages) ,
- Configuration manual (455 pages) ,
- Manual (73 pages)
Table of Contents
Advertisement
ACL configuration example
Network requirements
A company interconnects its departments through Router A. Configure an ACL to:
Permit access from the President's office at any time to the financial database server.
•
Permit access from the Financial department to the database server only during working hours (from
•
8:00 to 18:00) on working days.
•
Deny access from any other department to the database server.
Figure 1 Network diagram
Configuration procedure
# Create a periodic time range from 8:00 to 18:00 on working days.
<RouterA> system-view
[RouterA] time-range work 08:0 to 18:00 working-day
# Create an IPv4 advanced ACL numbered 3000 and configure three rules in the ACL. One rule permits
access from the President's office to the financial database server, one rule permits access from the
Financial department to the database server during working hours, and one rule denies access from any
other department to the database server.
[RouterA] acl number 3000
[RouterA-acl-adv-3000] rule permit ip source 192.168.1.0 0.0.0.255 destination
192.168.0.100 0
[RouterA-acl-adv-3000] rule permit ip source 192.168.2.0 0.0.0.255 destination
192.168.0.100 0 time-range work
[RouterA-acl-adv-3000] rule deny ip source any destination 192.168.0.100 0
[RouterA-acl-adv-3000] quit
# Apply IPv4 advanced ACL 3000 to filter outgoing packets on interface GigabitEthernet 2/1/0.
[RouterA] interface gigabitethernet 2/1/0
[RouterA-GigabitEthernet2/1/0] packet-filter 3000 outbound
15
- Quick Links:
- Acl Categories
- Configuring Acls
Hide quick links:
Advertisement
Table of Contents
