- Community Home
- >
- Networking
- >
- Switching and Routing
- >
- Aruba & ProVision-based
- >
- Re: Extended ACL
-
-
Forums
- Products
- Servers and Operating Systems
- Storage
- Software
- Services
- HPE GreenLake
- Company
- Events
- Webinars
- Partner Solutions and Certifications
- Local Language
- China - 简体中文
- Japan - 日本語
- Korea - 한국어
- Taiwan - 繁體中文
-
- Advancing Life & Work
- Advantage EX
- Alliances
- Around the Storage Block
- HPE Ezmeral: Uncut
- OEM Solutions
- Servers & Systems: The Right Compute
- Tech Insights
- The Cloud Experience Everywhere
- HPE Blog, Austria, Germany & Switzerland
- Blog HPE, France
- HPE Blog, Italy
- HPE Blog, Japan
- HPE Blog, Middle East
- HPE Blog, Latin America
- HPE Blog, Russia
- HPE Blog, Saudi Arabia
- HPE Blog, South Africa
- HPE Blog, UK & Ireland
- HPE Blog, Poland
-
Blogs
- Advancing Life & Work
- Advantage EX
- Alliances
- Around the Storage Block
- HPE Blog, Latin America
- HPE Blog, Middle East
- HPE Blog, Saudi Arabia
- HPE Blog, South Africa
- HPE Blog, UK & Ireland
- HPE Ezmeral: Uncut
- OEM Solutions
- Servers & Systems: The Right Compute
- Tech Insights
- The Cloud Experience Everywhere
-
Information
- Community
- Welcome
- Getting Started
- FAQ
- Ranking Overview
- Rules of Participation
- Tips and Tricks
- Resources
- Announcements
- Email us
- Feedback
- Information Libraries
- Integrated Systems
- Networking
- Servers
- Storage
- Other HPE Sites
- Support Center
- Aruba Airheads Community
- Enterprise.nxt
- HPE Dev Community
- Cloud28+ Community
- Marketplace
-
Forums
-
Forums
-
Blogs
-
Information
-
English
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
10-11-2016 01:15 AM
10-11-2016 01:15 AM
Extended ACL
Hi,
I have a problem with an Extended ACL. I would like to communicate the 9 IPs with each other. Otherwise, the IPs are nowhere to go. Take an example from the first switch.
IPs: 10.60.213.10, 10.60.213.11, 10.60.213.12
access to
IPs: 10.60.210.10, 10.60.210.11, 10.60.210.12, 10.60.213.10, 10.60.213.11, 10.60.213.12
These are, respectively, 3 out-points which are connected via the main node via OSPF. For testing I have a gateway in the main node created this also released.
I have specified the gateways of the individual networks. Here my config
ip access-list extended "KasseWaage"
10 permit ip 10.60.213.10 0.0.0.0 10.60.210.10 0.0.0.0 log
20 permit ip 10.60.213.10 0.0.0.0 10.60.210.11 0.0.0.0 log
30 permit ip 10.60.213.10 0.0.0.0 10.60.210.12 0.0.0.0 log
40 permit ip 10.60.213.11 0.0.0.0 10.60.210.10 0.0.0.0 log
50 permit ip 10.60.213.11 0.0.0.0 10.60.210.11 0.0.0.0 log
60 permit ip 10.60.213.11 0.0.0.0 10.60.210.12 0.0.0.0 log
70 permit ip 10.60.213.12 0.0.0.0 10.60.210.12 0.0.0.0 log
80 permit ip 10.60.213.12 0.0.0.0 10.60.210.10 0.0.0.0 log
90 permit ip 10.60.213.12 0.0.0.0 10.60.210.11 0.0.0.0 log
100 permit ip 10.60.213.10 0.0.0.0 10.60.211.10 0.0.0.0 log
110 permit ip 10.60.213.10 0.0.0.0 10.60.211.11 0.0.0.0 log
120 permit ip 10.60.213.10 0.0.0.0 10.60.211.12 0.0.0.0 log
130 permit ip 10.60.213.11 0.0.0.0 10.60.211.10 0.0.0.0 log
140 permit ip 10.60.213.11 0.0.0.0 10.60.211.11 0.0.0.0 log
150 permit ip 10.60.213.11 0.0.0.0 10.60.211.12 0.0.0.0 log
160 permit ip 10.60.213.12 0.0.0.0 10.60.211.10 0.0.0.0 log
170 permit ip 10.60.213.12 0.0.0.0 10.60.211.11 0.0.0.0 log
180 permit ip 10.60.213.12 0.0.0.0 10.60.211.12 0.0.0.0 log
200 permit ip 10.60.213.10 0.0.0.0 10.60.212.254 0.0.0.0 log
210 permit ip 10.60.213.11 0.0.0.0 10.60.212.254 0.0.0.0 log
220 permit ip 10.60.213.12 0.0.0.0 10.60.212.254 0.0.0.0 log
240 permit ip 10.60.213.10 0.0.0.0 10.60.211.254 0.0.0.0 log
250 permit ip 10.60.213.10 0.0.0.0 10.60.213.254 0.0.0.0 log
260 permit ip 10.60.213.11 0.0.0.0 10.60.211.254 0.0.0.0 log
270 permit ip 10.60.213.11 0.0.0.0 10.60.213.254 0.0.0.0 log
280 permit ip 10.60.213.12 0.0.0.0 10.60.211.254 0.0.0.0 log
290 permit ip 10.60.213.12 0.0.0.0 10.60.213.254 0.0.0.0 log
300 deny ip 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255
exit
vlan 1000
name "KASSEWAAGE-Transfer"
tagged B15-B16
ip access-group "KasseWaage" out
ip address 10.60.213.254 255.255.255.0
exit
- Tags:
- ACLs
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
10-15-2016 07:37 AM
10-15-2016 07:37 AM
Re: Extended ACL
You didn't state the problem, but I'd try assigning the access-list in in-direction
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
10-25-2016 04:22 AM
10-25-2016 04:22 AM
Re: Extended ACL
Hewlett Packard Enterprise International
- Communities
- HPE Blogs and Forum
© Copyright 2022 Hewlett Packard Enterprise Development LP