Message Image

Log in to ask questions, share your expertise, or stay connected to content. Don’t have a login? Join now.

Skip to main content (Press Enter).

Skip auxiliary navigation (Press Enter).

Skip main navigation (Press Enter).

Comware

View Only

last person joined: 2 days ago

Back to discussions

Expand all | Collapse all

hp 5406 access list on VLAN

This thread has been viewed 0 times

1. hp 5406 access list on VLAN

0 Kudos
furtlegog
Posted Apr 22, 2013 05:03 AM

Reply Reply Privately
Hi

I have a Student VLAN and an IT Services VLAN

I wish to be able to TCP from IT to student, but do not wish to be able to TCP from Student to IT Services

I have tried using

access-list 101 permit source destination established

but this allows tcp in both directions, unless I have the syntax wrong or have missed something.

do I need to add things like gt 1023 or ACK,RST

regards

#access
#list
#5406
#VLAN
#tcp
#established
2. RE: hp 5406 access list on VLAN

0 Kudos
jjx042
Posted Sep 06, 2013 09:33 AM

Reply Reply Privately
You'll have to apply the ACL as "in" or "out" on a VLAN. I'd recommend checking out the ACL part of the Configuration & Management Guide for the K-series (HP 5400/8200/3500). I always refer to it when making ACLs. You can specify standard or extended ACLs, then apply them in different ways.

Powered by Higher Logic