- Community Home
- >
- Networking
- >
- Wireless
- >
- M and MSM Series
- >
- Public Access Attributes and ACL question?
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-18-2012 01:57 PM
01-18-2012 01:57 PM
Public Access Attributes and ACL question?
Ok, here's my basic setup. I have a MSM765 mobility controller with an access controlled VSC using HTML authentication for guests. I am using the Internet port for this traffic which in turn is on a DMZ off of my firewall. I have firewall and NAT turned off on the MSM controller. My LAN port is being used for another VSC (not access controlled) for my internal LAN and I have a ACL on the controller that denies that subnet. So something like:
factory, DENY, all, 10.0.0.0/16,all
This config works great for me with the exception of I need to provide access to my email server over 443 on my LAN. I created another ACL
factory, ACCEPT, all, 10.1.1.10/32, all
and placed it before the DENY statement above (I was using "all" to keep it plain before I specified tcp and 443 for protocol and port; however, while I could ping the server, I could not browse to it. The email server is using a public certificate from Digicert and I mention this just because of some reading that maybe I might need to import their certificate chain into the controller? Anyway, if anyone can point me in the right direction, that would help.
Thanks.
- Tags:
- ACLs