HPE Community read-only access December 15, 2018
This is a maintenance upgrade. You will be able to read articles and posts, but not post or reply.
Hours:
Dec 15, 4:00 am to 10:00 am UTC
Dec 14, 10:00 pm CST to Dec 15, 4:00 am CST
Dec 14, 8:00 pm PST to Dec 15, 2:00 am PST
Comware Based
cancel
Showing results for 
Search instead for 
Did you mean: 

HP Procurve 5500 EI - ACL

 
SOLVED
Go to solution
MarkAM
Advisor

HP Procurve 5500 EI - ACL


Good day,

Kindly please help me in my ACL config on HP 5500 EI. I want to connect an outside network to my Internal network.

I connect it using wired connection and I only want certain host IP (192.168.x.10,192.168.x.11 and 192.168.x.12) to access my Internal Server (10.100.x.100)

and this is my sample config of ACL,

[CS-5500-acl-adv-3001-test1]rule 0 permit ip source 192.168.x.10 0.0.0.254 destination 110.100.x.100 0.0.0.254

and how can I implement this and how can i deny other IP's?

Thanks

2 REPLIES
Vince-Whirlwind
Honored Contributor
Solution

Re: HP Procurve 5500 EI - ACL

Why are you using "x" in an IP address? This isn't a very useful way of describing your problem. Worse, you've used "x" to describe what I am guessing are two completely different octets.

 

What you need is to get on the VLAN interface belonging to the 110.100.? subnet and put in:

packet-filter name adv-3001-test1 outbound

 

Much better though, add two more rules to your acl:

 - deny * to 110.100.?

 - permit * to *

 

And applyit instead to the 192.168.? subnet as "inbound".

 

 

MarkAM
Advisor

Re: HP Procurve 5500 EI - ACL

Thanks Vince, i have already figured out the solution.