HPE Community
Comware Based
1753562 Members
6134 Online
108796 Solutions
New Discussion

Re: HP 5900 Best Practices

 
aali
Frequent Advisor

‎01-24-2013 10:51 AM

‎01-24-2013 10:51 AM

HP 5900 Best Practices

Does HP have a best practices for HP 5900 or in General Commware Based Switches.

 

I can't find any configuration guide for configuring ACL and apply to the VLAN Interfaces.  HP has some guidelines to confiugre ACL and apply to phyiscal internfaces, but not to vlan interfaces.

 

I also need to need to know the best way to configure NTP.  If NTP is setup correctly then I guess I won't need to worry about setting the clock timezone etc.

 

Regards,

 

0 Kudos
2 REPLIES 2
paulgear
Esteemed Contributor

‎01-24-2013 01:26 PM

‎01-24-2013 01:26 PM

Re: HP 5900 Best Practices

Hi aali,

 

You're right about the documentation on VLAN ACLs - it does seem to be lacking (at least for 5900 models).  Here's an example from my 5500s:

 

acl number 3001

 description VLAN ACL

 hardware-count enable

 rule 1000 permit ip source 192.168.10.1 0 destination 192.168.11.0 0.0.0.255 counting

 rule 2000 permit ip source 192.168.11.1 0 destination 192.168.10.0 0.0.0.255 counting

 rule 50000 deny ip counting
...

interface Vlan-interface100
 description My VLAN
 packet-filter 3001 inbound
 packet-filter 3001 outbound
...

The 5900 should be pretty similar - try it out on an unused VLAN and see if it works.

 

For information on configuring NTP, see the Network Management and Monitoring Configuration Guide http://h20000.www2.hp.com/bizsupport/TechSupport/CoreRedirect.jsp?redirectReason=DocIndexPDF&prodSeriesId=5221896&targetPage=http%3A%2F%2Fbizsupport1.austin.hp.com%2Fbc%2Fdocs%2Fsupport%2FSupportManual%2Fc03191772%2Fc03191772.pdf

 

You can get a list of all available manuals at http://h20000.www2.hp.com/bizsupport/TechSupport/DocumentIndex.jsp?lang=en&cc=us&contentType=SupportManual&prodTypeId=12883&prodSeriesId=5221896

 

NTP does not automatically configure your time zone; this must be set manually.  You should have between 3 and 6 bare metal servers/switches/routers as time sources for each device you wish to use NTP on.  You can use hosts at pool.ntp.org for seeding NTP servers on your own site(s).

 

Hope that points you in the right direction.

Regards,
Paul
0 Kudos
aali
Frequent Advisor

‎02-11-2013 11:33 PM

‎02-11-2013 11:33 PM

Re: HP 5900 Best Practices

Paul,

 

Thx for wonderful explanation.

 

 

Regards

0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.