Adding A Descriptive Tag To An Acl - HP 7102dl - ProCurve Secure Router Configuration Manual

Router A
Core Switch
no match
no match
no match
Implicit
Packet is denied
Figure 5-4. Processing Entries in an ACL
When the device with the IP address 172.16.1.10 sends a packet to the LAN
that is connected to Router A, Router A begins to check the entries in the WAN
ACL to determine if the packet is allowed.
Router A checks the first entry, but the packet from 172.16.1.10 does not match
this entry. Router A then checks the second entry, but again the packet from
172.16.1.10 does not match the entry. Next, the Router A checks entry three,
and the packet does not match that entry. Nor does the packet match the fourth
entry.
However, the packet does match the implicit "deny any" at the end of the ACL.
As a result, the packet is denied.

Adding a Descriptive Tag to an ACL

To document why you created an ACL, you can use the remark command to
add a descriptive tag to either a standard or an extended ACL. This tag can be
up to 80 alphanumeric characters.
Syntax: remark <description>
For example, you may want to add a descriptive tag so that other network
administrators will immediately understand the purpose of the ACL.
Syntax: remark This ACL permits inbound Internet traffic
Applying Access Control to Router Interfaces
Using ACLs Alone to Configure Access Control
PPP 1
Router B
interface ppp 1
ip access-group WAN in
ip access-list standard WAN
1
deny host 192.168.115.91
2
deny host 192.168.44.53
3
permit 192.168.115.0 0.0.0.255
4 permit 192.168.44.0 0.0.0.255
deny any
at end of list
172.16.1.10
5-17