- Community Home
- >
- Networking
- >
- Legacy
- >
- Switches, Hubs, Modems
- >
- Re: HP Procurve 5412z Deny list not working
Switches, Hubs, and Modems
1752760
Members
5100
Online
108789
Solutions
Forums
Categories
Company
Local Language
юдл
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
юдл
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-17-2010 08:12 AM
тАО02-17-2010 08:12 AM
HP Procurve 5412z Deny list not working
I have a wireless vlan that is 192.168.77.x I would like this be separate from all the other vlans that are all 192.168.x.x. I setup a few lists but I can't get the deny or the permit to work. I need to allow 192.168.45.15 but deny everything else.
This is what I have.
ip access-list extended "Guest"
10 permit udp 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255 eq 67
20 permit udp 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255 eq 53
25 permit ip 0.0.0.0 255.255.255.255 192.168.45.15 0.0.0.0
30 deny ip 0.0.0.0 255.255.255.255 192.168.0.0 0.0.255.255
40 permit ip 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255
exit
ip access-list connection-rate-filter "guest"
I can get to everything nothing is being denied. I am not sure where to go from here.
This is what I have.
ip access-list extended "Guest"
10 permit udp 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255 eq 67
20 permit udp 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255 eq 53
25 permit ip 0.0.0.0 255.255.255.255 192.168.45.15 0.0.0.0
30 deny ip 0.0.0.0 255.255.255.255 192.168.0.0 0.0.255.255
40 permit ip 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255
exit
ip access-list connection-rate-filter "guest"
I can get to everything nothing is being denied. I am not sure where to go from here.
3 REPLIES 3
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-17-2010 01:19 PM
тАО02-17-2010 01:19 PM
Re: HP Procurve 5412z Deny list not working
Hi Mikey,
did you apply the ACL to any VLAN? Check the "sh access-list" output and verify. If not you need to map it to a VLAN with the "ip access-group" command.
See:
http://cdn.procurve.com/training/Manuals/3500-5400-6200-8200-ASG-Jan08-10-ACLs.pdf
Cheers,
Michael
did you apply the ACL to any VLAN? Check the "sh access-list" output and verify. If not you need to map it to a VLAN with the "ip access-group" command.
See:
http://cdn.procurve.com/training/Manuals/3500-5400-6200-8200-ASG-Jan08-10-ACLs.pdf
Cheers,
Michael
Ingentive Networks GmbH
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-17-2010 11:11 PM
тАО02-17-2010 11:11 PM
Re: HP Procurve 5412z Deny list not working
Hello,
you should add this ACL to a VLAN. Go to the VLAN context and try a
ip access-group guest in
Regards,
Patrick
you should add this ACL to a VLAN. Go to the VLAN context and try a
ip access-group guest in
Regards,
Patrick
Best regards,
Patrick
Patrick
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-18-2010 01:30 PM
тАО02-18-2010 01:30 PM
Re: HP Procurve 5412z Deny list not working
I found the problem, the ACL was correct I was looking in the wrong place.
The previous person named the Vlan "Guests" not that it would matter that much, but he added guests to the Guests vlan. I changed everything to be Guest and it worked fine. Added Guest instead of guests would have fixed the problem.
I found that consistency and caps are important!
Thanks for your help.
The previous person named the Vlan "Guests" not that it would matter that much, but he added guests to the Guests vlan. I changed everything to be Guest and it worked fine. Added Guest instead of guests would have fixed the problem.
I found that consistency and caps are important!
Thanks for your help.
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
News and Events
Support
© Copyright 2024 Hewlett Packard Enterprise Development LP