Product manual
EXAMPLES
Example: filter source-port drop
Create a source-port filter that drops all traffic received on port 5 with a destination of port trunk 1
(trk1) and any port in the range of port 10 to port 15:
ProCurve(cong)# lter source-port 5 drop trk1,A10-A15
Example: filter source-port drop
Create a filter on port trunk 1 to drop traffic received inbound for trunk 2 (trk2) and ports 10-15:
ProCurve(cong)# lter source-port trk1 drop trk2,A10-A15
COMMAND DETAILS
port-list (p. 175)filter-action (p. 174)ascii (p. 173)
protocol (p. 176)forward (p. 174)connection-rate (p. 173)
source-port (p. 176)multicast (p. 175)connection-rate-portlist (p. 173)
named-filter (p. 175)drop (p. 174)
ascii
■ [no] filter source-port named-filter ASCII
Set the lter name.
Next Available Options:
■ forward -- Set a list of ports to which forwarding of filtered packets is permitted. ([ethernet]
PORT-LIST) (p. 174)
■ drop -- Set a list of ports to which forwarding of filtered packets is not permitted. ([ethernet]
PORT-LIST) (p. 174)
connection-rate
■ [no] filter connection-rate
Usage: [no] lter connection-rate port-list < notify-only | throttle | block>
Description: Selects behavior for port(s) when a host is ltered.
Block will disable the host until an administrator explicitly
re-enables access. Throttle will deny network access for a
specic penalty period before automatically re-enabling
access. Notify will simply log a message/send a SNMP
trap when the lter is tripped.
Next Available Option:
■ connection-rate-portlist -- ([ethernet] PORT-LIST) (p. 173)
connection-rate-portlist
■ [no] filter connection-rate [ETHERNET] PORT-LIST
Next Available Option:
■ filter-action < block | notify-only | throttle > -- (p. 174)
173© 2008 Hewlett-Packard Development Company, L.P.
filterCommand Line Interface Reference Guide