Aruba & ProVision-based
cancel
Showing results for 
Search instead for 
Did you mean: 

i want to configure extended acls in aruba 2540 switch

 
Highlighted
Occasional Contributor

i want to configure extended acls in aruba 2540 switch

i want to configure extended acls in aruba 2540 switch

and only access for only admin system in SSH only 

how to write extended acls in this switches kindely help me guys.

2 REPLIES 2
HPE Pro

Re: i want to configure extended acls in aruba 2540 switch

Hello Ganil,

An extended ACL can permit or deny traffic based on both the source and destination address(s) as well as tcp/udp/icmp trafic types.

 For an extended ACL ID, use either a unique number in the range of 100-199 or a unique name string of up to 64 alphanumeric characters

 Example ,

Aruba-Switch(Config)#ip access-list extended “Abcd” (Creates an extended access list Abcd)

 Aruba-Switch(config-ext-nacl)#10 deny tcp 0.0.0.0 255.255.255.255 192.168.1.2 0.0.0.0 eq 25 (Denies everyone access to port 25 on 192.168.1.2)

 Aruba-Switch(config-ext-nacl)#20 permit ip 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255 (Permit any to any for any IP service)

Aruba-Switch(vlan10)#ip access-group “Abcd” in (Applies the access list 100 in an inbound direction for vlan 10)

 Aruba-Switch(Config)#show access-list (Displays configured access-lists)

 

 

 

Accept or Kudo

Highlighted
Occasional Contributor

Re: i want to configure extended acls in aruba 2540 switch

ok i will try 

 

thank you.