Working Offline To Create Or Edit An Acl - HP ProCurve 6120G/XG Manual
Hp procurve series 6120 blade switches access security guide
Hide thumbs
Also See for ProCurve 6120G/XG:
- Configuration manual (662 pages) ,
- Manual (469 pages) ,
- Management manual (222 pages)
Table of Contents
Advertisement
IPv4 Access Control Lists (ACLs)
Editing ACLs and Creating an ACL Offline
Figure 9-25. Example of Deleting an ACE from an Extended ACL
Working Offline To Create or Edit an ACL
Note
When creating an ACL offline, ensure that there are sufficient rules available
for the ACEs you plan to apply to the ACL. If you attempt to apply an ACL to
multiple interfaces and the switch does not have sufficient resources to
support the ACL, the command will fail for all specified interfaces. For more
on ACL resources, refer to "Planning an ACL Application" on page 9-17.
For longer ACLs that would be difficult or time-consuming to accurately
create or edit in the CLI, you can use the offline method:
1. Begin by doing one of the following:
9-64
ACL 103 Before Removing
the Second "deny" ACE.
To edit one or more existing ACLs, use copy command-output tftp to
•
copy the current version of the ACL configuration to a file in your
TFTP server. For example, to copy the ACL configuration to a file
named acl02.txt in the TFTP directory on a server at 10.28.227.2:
ProCurve# copy command-output 'show access-list
config' tftp 10.28.227.2 acl02.txt pc
Use no access-list
to remove this line
from ACL 103.
ACL 103 After Removing
the Second "deny" ACE.
Hide quick links:
Advertisement
Table of Contents
