Email Subscription Notifications Suspended Temporarily
We are in the process of making navigation in the Servers and Operating Systems forums simpler and more direct. While doing this, we have to temporarily suspend email notifications for subscriptions. If you are subscribed to one or more discussion boards or blogs in the community, please check them daily to see new content. Notifications will be turned back on in a few days. We apologize for any inconvenience this may cause. Thanks, Warren_Admin
ProCurve / ProVision-Based
Showing results for 
Search instead for 
Did you mean: 

5406 accecss list


5406 accecss list



I have a Student VLAN and an IT Services VLAN


I wish to be able to TCP from IT to student, but do not wish to be able to TCP from Student to IT Services


I have tried using


access-list 101 permit source destination established


but this allows tcp in both directions, unless I have the syntax wrong or have missed something.


do I need to add things like gt 1023 or ACK,RST






Frequent Advisor

Re: 5406 accecss list

Hi Is your situation can be solved by protected port configuration?



Re: 5406 accecss list

looking at the link provided, protected ports looks like the ports will be protected from each other.


What i need is for the IT Services Vlan to still be able to access the student VLan but the student vlan to be blocked. Also this mentions port based my access list is on the VLAN itself(student vlan).


I think the tcp established route might be the solution if I can only sort out the syntax