Configuring Numbered, Extended Acls - HP 3500yl Series Access Security Manual
Switch software
Hide thumbs
Also See for 3500yl Series:
- Release notes (219 pages) ,
- Specifications (16 pages) ,
- Features (6 pages)
Table of Contents
Advertisement
IPv4 Access Control Lists (ACLs)
Configuring Extended ACLs
A
(Refer to figure 10-18 on page
HP Switch(config)# ip access-list extended Extended-List-01
HP Switch(config-ext-nacl)# permit tcp host 10.10.10.44 host
10.10.20.78 eq telnet
HP Switch(config-ext-nacl)# deny ip 10.10.10.1/24 10.10.20.1/24
HP Switch(config-ext-nacl)# permit ip any any
HP Switch(config-ext-nacl)# exit
HP Switch(config)# vlan 10 ip access-group Extended-List in
B
(Refer to figure 10-18 on page
HP Switch(config)# ip access-list extended Extended-List-02
HP Switch(config-ext-nacl)# permit tcp host 10.10.20.100 host
10.10.30.55 eq ftp
HP Switch(config-ext-nacl)# deny tcp 10.10.20.1/24 any eq ftp log
HP Switch(config-ext-nacl)# permit ip any any
HP Switch(config-ext-nacl)# exit
HP Switch(config)# vlan 20 ip access-group Extended-List-02 in
Figure 10-19. Example of Configuration Commands for Extended ACLs
10-74
Configuring Numbered, Extended ACLs
This section describes the commands for performing the following in a
numbered, extended ACL:
■
creating the ACL by entering the first ACE in the list
appending a new ACE to the end of an existing ACL
■
For other IPv4 ACL topics, refer to the following:
Topic
configuring named, standard ACLs
configuring numbered, standard ACLs
configuring named, extended ACLs
applying or removing an ACL on an interface
deleting an ACL
editing an ACL
sequence numbering in ACLs
including remarks in an ACL
displaying ACL configuration data
creating or editing ACLs offline
enabling ACL "Deny" logging
Page
10-52
10-55
10-61
10-81
10-85
10-86
10-87
10-92
10-97
10-107
10-112
Hide quick links:
Advertisement
Chapters
Table of Contents
