Online Expert Day - HPE Data Storage - Live Now
April 24/25 - Online Expert Day - HPE Data Storage - Live Now
Read more
Comware Based
cancel
Showing results for 
Search instead for 
Did you mean: 

ACL 5900 allow Multiple vlans in

dcatcha
Occasional Visitor

ACL 5900 allow Multiple vlans in

We have an ACL that we are trying to allow other vlans to access, however the documentation in does not seem to be correct, as it does not work. https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-c03187008

Based on the  bottom of page 8 in the lnk above it says the 0 bits you care about, or want a match on, and the 1 bits you don't so the rule would be:

 rule 24 permit ip source 10.10.0.0 0.0.255.255 destination 10.10.107.11 0

 rule 120 deny ip

 

 

 

3 REPLIES
Nitish_N
Occasional Visitor

Re: ACL 5900 allow Multiple vlans in

Hi dcatcha,

May i know what is not working in the ACL. As per the documents its correct that "0" means to match on and "1" means anything. Can you please explain more the ACL issue and whats is not working.

 

ACL 

Rule 24 permit ip source 10.10.0.0 0.0.255.255 destination 10.10.107.11 0

Above ACL means, IP traffic from network 10.10.0.0/16 going to destination 10.10.107.11 should be permitted. So my question, is ACL permitting the traffic as per the rule?

N

HPE Networking
Vince-Whirlwind
Honored Contributor

Re: ACL 5900 allow Multiple vlans in

You might need to clarify the IP address & default gateway of the testing and target devices, together with the IP configuration details of the relevant interfaces on the layer-3 device, and specify the interface where the ACL is applied.

Buck1
Occasional Visitor

Re: ACL 5900 allow Multiple vlans in

I am responding for dcatcha. We resolved the issue. Instead of permitting  our VLANS to connect to VLAN 107,  we changed the rule to permit a specified IP on VLAN 107 to communicate with the other VLANS.