SROS Command Line Interface Reference Guide
Global Configuration Mode Command Set
the top and the more general at the bottom.
The following commands are contained in the access-list extended:
remark
Use the remark command to associate a descriptive tag (up to 80 alphanumeric characters encased in
quotation marks) to the access-list. Enter a functional description for the list such as "This list blocks all
outbound web traffic".
log
Using the log keyword logs a message (if debug access-list is enabled for this access list) when the
access list finds a packet match.
Usage Examples
The following example creates an access list AllowIKE to allow all IKE (UDP Port 500) packets from the
192.168.22.55.0/24 network:
ProCurve(config)#ip access-list extended AllowIKE
ProCurve(config-ext-nacl)#permit udp 192.168.22.55.0 0.0.0.255 eq 500 any eq 500
For more details, refer to the ProCurve Secure Router 7000dl Series Management and Configuration
Guide for information regarding access-list confutation.
5991-2114
© Copyright 2007 Hewlett-Packard Development Company, L.P.
378