Configure Acls; Acl Entries; Types Of Acls - HP ProCurve Secure Router 7203 dl Advanced Management And Configuration Manual

Applying Access Control to Router Interfaces
Using ACLs Alone to Configure Access Control
5-6

Configure ACLs

You can create and apply two ACLs to each interface:
one ACL to control incoming traffic
one ACL to control outgoing traffic
If you apply ACLs directly to router interfaces, the ProCurve Secure Router
uses the ACL to both select the traffic and to perform the action on that traffic.

ACL Entries

ACLs are composed of an ordered list of entries, and each entry contains two
parts: an action and a packet pattern.
Action. You can define one of two actions for an entry:
permit
deny
Packet Pattern. You can define patterns based on:
source IP address
source and destination IP addresses
IP protocols
TCP or UDP ports
For example, an ACL could include entries such as:
deny host 192.168.115.91
deny host 192.168.44.53
permit 192.168.115.0 0.0.0.255
permit 192.168.44.0 0.0.0.255
The first two entries deny access to the devices with the IP addresses
192.168.115.91 and 192.168.44.53. The last two entries permit access to two
subnets: 192.168.115.0 /24 and 192.168.44.0 /24.

Types of ACLs

The ProCurve Secure Router supports two types of ACLs:
standard
extended