Good Day,
We are building a dev environment on a unique VLAN (in VSphere). What we need to do now is make sure that machines in that VLAN can only get out to the web (for 3rd party devs to access things), but prevent the VLAN from having any insight into the rest of our network. The ComWare swtich that the VM environment is tied to is configured as the gateway for the VLAN. I've looked at the syntax examples in the HPE documents, and all they really do is confuse things.
(IPs are examples only) What we want is for anything with an address of 10.10.10.x (VMs for devs) from being able to reach 10.20.20.x (our primary gateway)
I've tried this: rule 1 deny tcp 10.10.10.0 0 destination tcp 10.20.20.0 0
A machine in the 10.10.10.0 range is still able to ping 10.20.20.0
What syntax do I need to use to lock down the dev environment? The HPE example of using an ACL to limit access for time of day is nice but entirely useless to me.