- Community Home
- >
- Networking
- >
- Switching and Routing
- >
- Comware Based
- >
- Converting ACL from Cisco format to HPE format
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-06-2018 05:45 AM
09-06-2018 05:45 AM
Converting ACL from Cisco format to HPE format
Hi Experts,
Recently for a NAC dpeloyment, I have converted one of the ACLs from Cisco switch to HPE switch.
But, sicne I have not prior experience working with HPE switches, I am still skepticle if I have converted the ACL correctly...?
Anyone could shed some light and let me know if the conversion is correct or not, so, below are the ACLs
Cisco ACL:
deny ip any host <ip address>
deny udp any any eq domain
deny udp any eq bootpc any eq bootps
deny udp any eq bootps any eq bootpc
deny tcp any any eq 2967
deny tcp any eq 2967 any
deny tcp any any eq 7070
deny tcp any eq 7070 any
deny ip any host <ip address>
deny tcp any host <ip address> eq 443
deny tcp any host <ip address> eq www
permit tcp any any eq www
permit tcp any any eq 443
Converted to HPE is here:
rule 0 permit ip destination <ip adress> 0
rule 5 permit udp destination-port eq dns
rule 10 permit udp source-port eq bootpc destination-port eq bootps
rule 15 permit udp source-port eq bootps destination-port eq bootpc
rule 20 permit tcp destination-port eq 2967
rule 25 permit tcp source-port eq 2967
rule 30 permit tcp destination-port eq 7070
rule 35 permit tcp source-port eq 7070
rule 40 permit ip destination <ip adress> 0
rule 45 permit tcp destination <ip adress> 0 destination-port eq 443
rule 50 permit tcp destination <ip adress> 0 destination-port eq www
rule 55 deny tcp destination-port eq www
rule 60 deny tcp destination-port eq 443
Any pointers or assistance is highly appreicated.
- Tags:
- ACLs
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-13-2018 10:45 PM
09-13-2018 10:45 PM
Re: Converting ACL from Cisco format to HPE format
you may consider below document on ACL functions
https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-a00007120en_us&docLocale=en_US