Configuring And Assigning An Ipv4 Acl; Overview; General Steps For Implementing Acls - HP 3500yl Series Access Security Manual
Switch software
Hide thumbs
Also See for 3500yl Series:
- Release notes (219 pages) ,
- Specifications (16 pages) ,
- Features (6 pages)
Table of Contents
Advertisement
IPv4 Access Control Lists (ACLs)
Configuring and Assigning an IPv4 ACL
Caution Regarding
the Use of IPv4
Source Routing
10-40
CIDR Notation. For information on using CIDR notation to specify ACL
masks, refer to "Using CIDR Notation To Enter the IPv4 ACL Mask" on page
10-49.
Configuring and Assigning an IPv4 ACL
ACL Feature
Configuring and Assigning a Standard ACL
Configuring and Assigning an Extended ACL
Enabling or Disabling ACL Filtering
Overview
General Steps for Implementing ACLs
1.
Configure one or more ACLs. This creates and stores the ACL(s) in the
switch configuration.
2.
Assign an ACL. This step uses one of the following applications to assign
the ACL to an interface:
•
RACL (routed IPv4 traffic entering or leaving the switch on a given
VLAN)
•
VACL (any IPv4 traffic entering the switch on a given VLAN)
•
Static Port ACL (any IPv4 traffic entering the switch on a given port,
port list, or static trunk)
3.
If the ACL is applied as an RACL, enable IPv4 routing. Except for instances
where the switch is the traffic source or destination, assigned RACLs filter
IPv4 traffic only when routing is enabled on the switch.
IPv4 source routing is enabled by default on the switch and can be used to
override ACLs. For this reason, if you are using ACLs to enhance network
security, the recommended action is to disable source routing on the switch.
To do so, execute no ip source-route.
Page
10-50
10-59
10-81
Hide quick links:
Advertisement
Chapters
Table of Contents
