HP ProCurve Secure Router 7203 dl Advanced Management And Configuration Manual page 234
Secure router
Hide thumbs
Also See for ProCurve Secure Router 7203 dl:
- Configuration manual (1114 pages) ,
- Reference manual (1455 pages) ,
- Product end-of-life disassembly instructions (2 pages)
Table of Contents
Advertisement
Applying Access Control to Router Interfaces
Using ACLs Alone to Configure Access Control
5-14
In practice, you would use the any keyword only if you want to match all
traffic from a particular port. You can also view options for selecting the port
by entering the ? help command after specifying a particular source or
destination. For example:
ProCurve(config-ext-nacl)# permit tcp 192.168.1.0 0.0.0.255 ?
ProCurve(config-ext-nacl)# deny udp any host 192.168.10.1 ?
Table 5-5 shows the options you have for specifying ports.
Table 5-5.
Specifying Ports in Extended ACLs
Option
eq <port number>
gt <port number>
lt <port number>
range <first port number last port number>
neq <port number>
To view a list of well-known ports, enter the
port commands (such as eq, gt, or neq). The list of options is displayed in
alphabetical order.
You can enter one of the ports listed by the CLI or the corresponding number.
For example, the following commands perform the same function:
ProCurve(config-ext-nacl)# permit tcp host 192.168.1.11 eq 80 any
or
ProCurve(config-ext-nacl)# permit tcp host 192.168.1.11 eq www any
Meaning
matches a specific port
matches all ports that are a larger number
than the port number you specify (not
including the specified port)
matches all ports that are a smaller number
than the port number you specify (not
including the specified port)
matches the range of ports you specify
matches all ports except the port number
you specify
help command after one of the
?
Advertisement
Chapters
Table of Contents
Troubleshooting
