Product guide
10-6
Access Control Lists (ACLs)
Overview of Options for Applying ACLs on the Switch
Note This chapter describes the ACL applications you can statically configure on
the switch. For information on dynamic port ACLs assigned by a RADIUS
server, refer to the chapter 7, “Configuring RADIUS Server Support for Switch
Services”.
Table 10-1. Command Summary for Standard ACLs
Action Command(s) Page
Create a Standard,
Named ACL
or
Add an ACE to the End
of an Existing Stan-
dard, Named ACL
ProCurve(config)# ip access-list standard < name-str >
ProCurve(config-std-nacl)# < deny | permit >
< any | host <SA > | SA/< mask-length > | SA < mask >>
1
[log]
2
10-53
Create a Standard,
Numbered ACL
or
Add an ACE to the End
of an Existing
Standard, Numbered
ACL
ProCurve(config)# access-list < 1-99 > < deny | permit >
< any | host <SA > | SA/< mask-length > | SA < mask >>
[log]
2
10-56
Use a Sequence
Number To Insert an
ACE in a Standard ACL
ProCurve(config)# ip access-list standard < name-str | 1-99 >
ProCurve(config-std-nacl)# 1-2147483647 < deny | permit >
< any | host <SA > | SA/< mask-length > | SA < mask >>
1
[log]
2
10-87
Use an ACE’s
Sequence Number To
Delete the ACE from a
Standard ACL
ProCurve(config)# ip access-list standard < name-str | 1-99 >
ProCurve(config-std-nacl)# no < 1-2147483647 >
10-90
Resequence the ACEs
in a Standard ACL
ProCurve(config)# ip access-list resequence < name-str | 1-99 > < 1-2147483647 >
< 1-2147483646 >
10-91
Enter or Remove a
Remark from a
Standard ACL
ProCurve(config)# ip access-list standard < name-str | 1-99 >
ProCurve(config-ext-nacl)# [ remark < remark-str > | no < 1-2147483647 > remark ]
For numbered, standard ACLs only, the following remark commands can be
substituted for the above:
ProCurve(config)# access-list < 1 - 99 > remark < remark-str >
ProCurve(config)# [no] access-list < 1 - 99 > remark
10-92
10-94