Creating Entries In The Acp; Editing Acps; Deleting An Acp - HP 7102dl - ProCurve Secure Router Configuration Manual
Procurve secure router 7000dl series - advanced management and configuration guide
Hide thumbs
Also See for 7102dl - ProCurve Secure Router:
- Reference manual (1455 pages) ,
- Product end-of-life disassembly instructions (2 pages) ,
- Advanced management and configuration manual (1005 pages)
Table of Contents
Advertisement
Applying Access Control to Router Interfaces
Using ACPs to Control Access to Router Interfaces
Creating Entries in the ACP
From the policy class configuration mode context, you can begin to enter
allow, discard, and NAT entries. To create an allow entry, enter:
Syntax: allow list <listname> [self]
For example, if you want to allow the packets selected by the Outside ACL,
you would enter:
ProCurve(config-policy-class)# allow list Outside
The optional self keyword designates the internal IP stack as the destination
in the specified ACL. The Secure Router OS firewall preforms the specified
action on traffic that matches the ACL and is destined for the router itself.
To discard the packets that are selected by an ACL, enter:
Syntax: discard list <listname> [self]
For example, to discard the packets that are selected by the Inside ACL, enter:
ProCurve(config-policy-class)# discard list Inside
You can also NAT the packets specified in an ACL. This option is discussed in
Chapter 6: Configuring Network Address Translation.
Editing ACPs
If you need to edit the entries in an ACP, you use the ip policy-class command
to access that ACP:
Syntax: ip policy-class <policyname>
You can then use the no command to remove entries, or you can add entries
as needed.
Deleting an ACP
To delete an entire ACP, you must know the name of that ACP. You can then
enter:
Syntax: no ip policy-class <policyname>
5-37
- Quick Links:
- Procurve Secure Router
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
