HPE Community
WAN Routing
1846812 Members
3276 Online
110256 Solutions
New Discussion

Curious about Proper ACLs on a 3013 and up

 
march_2
New Member

‎12-21-2009 04:28 AM

‎12-21-2009 04:28 AM

Curious about Proper ACLs on a 3013 and up

Hey






Ok, so basically what I am trying to figure out, for security purposes on some of my corporate internet facing lines only certain ports / destinations are allowed in, but I am not 100% sure if the ACL's I have configured are actually working, my logic tells me much like a firewall you would have default deny rules for say any TCP/UDP traffic and then only allow specific destinations and ports to connect inwards?



For example:


ACL:


acl 3000 match-order auto


rule normal permit ip source any destination IPNUM1 IPNUM1NETMASK destinaton-port eq PORT


rule normal deny ip source any destination any


INTERFACE CONFIGURATION:


interface Serial0


clock DTECLK1


description "BLA BLA"


ip address IPONINT NETMASKONINT


firewall packet-filter 3000 inbound




Am I correct in my configuration above or is there something I am missing ? This is just what I can figure out when working on the routers and to me it looks right, but owing to the nature of the business, I need to be 100% sure.





Any help would be appretiated or if you could point me to a proper document or guide it would also help a great deal, unfortunatly I wasnt really able to figure out much from reading the manuals :-p



0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.