Hi Experts,
Recently for a NAC dpeloyment, I have converted one of the ACLs from Cisco switch to HPE switch.
But, sicne I have not prior experience working with HPE switches, I am still skepticle if I have converted the ACL correctly...?
Anyone could shed some light and let me know if the conversion is correct or not, so, below are the ACLs
Cisco ACL:
deny ip any host <ip address>
deny udp any any eq domain
deny udp any eq bootpc any eq bootps
deny udp any eq bootps any eq bootpc
deny tcp any any eq 2967
deny tcp any eq 2967 any
deny tcp any any eq 7070
deny tcp any eq 7070 any
deny ip any host <ip address>
deny tcp any host <ip address> eq 443
deny tcp any host <ip address> eq www
permit tcp any any eq www
permit tcp any any eq 443
Converted to HPE is here:
rule 0 permit ip destination <ip adress> 0
rule 5 permit udp destination-port eq dns
rule 10 permit udp source-port eq bootpc destination-port eq bootps
rule 15 permit udp source-port eq bootps destination-port eq bootpc
rule 20 permit tcp destination-port eq 2967
rule 25 permit tcp source-port eq 2967
rule 30 permit tcp destination-port eq 7070
rule 35 permit tcp source-port eq 7070
rule 40 permit ip destination <ip adress> 0
rule 45 permit tcp destination <ip adress> 0 destination-port eq 443
rule 50 permit tcp destination <ip adress> 0 destination-port eq www
rule 55 deny tcp destination-port eq www
rule 60 deny tcp destination-port eq 443
Any pointers or assistance is highly appreicated.
