Applying Access Control to Router Interfaces
Quick Start
N o t e
N o t e
5-60
Quick Start
This section provides the commands you will need to quickly configure and
apply access controls to interfaces on the ProCurve Secure Router. There are
two access control mechanisms on the ProCurve Secure Router:
access control lists (ACLs)
access control policies (ACPs)
ACLs can be used alone or in combination with ACPs. This "Quick Start"
section first explains how to use just ACLs to control access. Specifically, it
explains how to configure an ACL and apply it directly to an interface.
This section then outlines the steps for configuring an ACP. Specifically, it
explains:
how to configure an ACL
how to configure an ACP
how to apply the ACP to an interface
Only a minimal explanation is provided in the "Quick Start" section. For a
detailed explanation of ACLs and ACPs, read the entire chapter.
If you are not familiar with ACLs and ACPs, ProCurve Networking strongly
recommends that you read the entire chapter before you begin configuring
and applying access controls to the interfaces on your ProCurve Secure
Router. If you do not thoroughly understand how ACLs and ACPs work, you
could inadvertently allow traffic that should be blocked or, conversely, block
traffic that should be allowed.
Enabling the Built-in Firewall
Before you begin configuring access control on router interfaces, you should
enable the ProCurve Secure Route OS firewall. From the global configuration
mode context, enter:
ProCurve(config)# ip firewall
If you are using ACLs only, you do not have to enable the Secure Router OS
firewall. If you are using ACPs, you must enable the firewall.