- Community Home
- >
- Networking
- >
- Legacy
- >
- Switches, Hubs, Modems
- >
- Re: 5300xl ACL question
Switches, Hubs, and Modems
1753504
Members
4941
Online
108794
Solutions
Forums
Categories
Company
Local Language
юдл
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
юдл
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-27-2009 01:00 PM
тАО05-27-2009 01:00 PM
5300xl ACL question
Does anyone know how to setup an ACL that would block clients on the same vlan from talking to one another (or similar feature).
We have a number of public lab computers that I would like to isolate with the exception of communication with some specific servers and the internet.
We have a number of public lab computers that I would like to isolate with the exception of communication with some specific servers and the internet.
3 REPLIES 3
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-27-2009 08:55 PM
тАО05-27-2009 08:55 PM
Re: 5300xl ACL question
Hi,
i would do this with a source port filter and not an acl.
hth
alex
i would do this with a source port filter and not an acl.
hth
alex
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-28-2009 05:07 AM
тАО05-28-2009 05:07 AM
Re: 5300xl ACL question
Would that only work on the local switch? We have roughly 80 switches on campus with multiple lab locations. I would think what I need would have to be IP based if I wanted it to be effective in this situation. Then again I may not be understanding how port filtering works.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-29-2009 12:30 AM
тАО05-29-2009 12:30 AM
Re: 5300xl ACL question
yes it is possible
block client on the same vlan with IDM and port base dynamic acl
5400 series switch able vlan base access list
but 2610 is edge switch able port base acl and support dynamic acl in this way you can asign each port separate acl command
IDM**********
http://www.hp.com/rnd/products/management/idm/overview.htm
User-based access control lists (ACLs): Users can be allowed or denied access to network resources (e.g., servers, printers) based on the destination IP address or a range of IP addresses, and/or to network services (e.g., Web pages, instant messaging, or FTP) based on well-known or user-defined TCP/UDP ports.
2610 switch *******
http://www.hp.com/rnd/products/switches/HP_ProCurve_Switch_2610_Series/overview.htm
Identity-driven ACL: enables implementation of a highly granular and flexible access security policy and VLAN assignment specific to each authenticated network user
block client on the same vlan with IDM and port base dynamic acl
5400 series switch able vlan base access list
but 2610 is edge switch able port base acl and support dynamic acl in this way you can asign each port separate acl command
IDM**********
http://www.hp.com/rnd/products/management/idm/overview.htm
User-based access control lists (ACLs): Users can be allowed or denied access to network resources (e.g., servers, printers) based on the destination IP address or a range of IP addresses, and/or to network services (e.g., Web pages, instant messaging, or FTP) based on well-known or user-defined TCP/UDP ports.
2610 switch *******
http://www.hp.com/rnd/products/switches/HP_ProCurve_Switch_2610_Series/overview.htm
Identity-driven ACL: enables implementation of a highly granular and flexible access security policy and VLAN assignment specific to each authenticated network user
cenk
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
News and Events
Support
© Copyright 2024 Hewlett Packard Enterprise Development LP