Creating Entries In The Acp; Editing Acps; Deleting An Acp - HP ProCurve Secure Router 7203 dl Advanced Management And Configuration Manual
Secure router
Hide thumbs
Also See for ProCurve Secure Router 7203 dl:
- Configuration manual (1114 pages) ,
- Reference manual (1455 pages) ,
- Product end-of-life disassembly instructions (2 pages)
Table of Contents
Advertisement
Applying Access Control to Router Interfaces
Using ACPs to Control Access to Router Interfaces
5-36
Creating Entries in the ACP
From the policy class configuration mode context, you can begin to enter
allow, discard, and NAT entries. To create an allow entry, enter:
Syntax: allow list <listname> [self]
For example, if you want to allow the packets selected by the Outside ACL,
you would enter:
ProCurve(config-policy-class)# allow list Outside
The optional self keyword designates the internal IP stack as the destination
in the specified ACL. The Secure Router OS firewall preforms the specified
action on traffic that matches the ACL and is destined for the router itself.
To discard the packets that are selected by an ACL, enter:
Syntax: discard list <listname> [self]
For example, to discard the packets that are selected by the Inside ACL, enter:
ProCurve(config-policy-class)# discard list Inside
You can also NAT the packets specified in an ACL. This option is discussed in
Chapter 6: Configuring Network Address Translation.
Editing ACPs
If you need to edit the entries in an ACP, you use the ip policy-class command
to access that ACP:
Syntax: ip policy-class <policyname>
You can then use the no command to remove entries, or you can add entries
as needed.
Deleting an ACP
To delete an entire ACP, you must know the name of that ACP. You can then
enter:
Syntax: no ip policy-class <policyname>
Advertisement
Chapters
Table of Contents
Troubleshooting
Need help?
Do you have a question about the ProCurve Secure Router 7203 dl and is the answer not in the manual?
Questions and answers