HP 3500yl Series Access Security Manual page 493

Example of a Named, Extended ACL. Suppose that you want to imple-
ment these policies on a switch configured for IPv4 routing and membership
in VLANs 10, 20, and 30:
A. Permit Telnet traffic from 10.10.10.44 to 10.10.20.78, deny all other IPv4
traffic from network 10.10.10.0 (VLAN 10) to 10.10.20.0 (VLAN 20), and
permit all other IPv4 traffic from any source to any destination. (See "A"
in figure 10-18, below.)
B. Permit FTP traffic from 10.10.20.100 (on VLAN 20) to 10.10.30.55 (on
VLAN 30). Deny FTP traffic from other hosts on network10.10.20.0 to any
destination, but permit all other IPv4 traffic.
10.10.10.44
10.10.20.100
10.10.20.100
10.10.10.0
10.10.20.0
10.10.30.0
10.10.30.55
Figure 10-18. Example of an Extended ACL
IPv4 Access Control Lists (ACLs)
Configuring Extended ACLs
Switch
VLAN 10
1
A
10.10.10.1
2 VLAN 20
B
10.10.20.1
VLAN 30
3
10.10.30.1
10-73