10-89
IPv4 Access Control Lists (ACLs)
Editing an Existing ACL
To insert a new ACE between existing ACEs in a list:
1.
Use
ip access-list
to enter the “Named-ACL” (
nacl
) context of the ACE.
This applies regardless of whether the ACE was originally created as a
numbered ACL or a named ACL
.
2.
Begin the ACE command with a sequence number that identifies the
position you want the ACE to occupy. (The sequence number range is 1-
2147483647
.)
3.
Complete the ACE with the command syntax appropriate for the type of
ACL you are editing.
For example, inserting a new ACE between the ACEs numbered 10 and 20 in
figure 10-25 requires a sequence number in the range of 11-19 for the new ACE.
Figure 10-26. Example of Inserting an ACE in an Existing ACL
In the following example, the first two ACEs entered become lines 10 and 20
in the list. The third ACE entered is configured with a sequence number of 15
and is inserted between lines 10 and 20.
HP Switch(config)# ip access-list standard My-List
HP Switch(config-std-nacl)# 15 deny 10.10.10.1/24
HP Switch(config-std-nacl)# show run
.
.
.
ip access-list standard "My-List"
10 permit 10.10.10.25 0.0.0.0
15 deny 10.10.10.1 0.0.0.255
20 permit 10.20.10.117 0.0.0.0
30 deny 10.20.10.1 0.0.0.255
40 permit 0.0.0.0 255.255.255.255
exit
Enters the “Named-ACL
context for “My-List”.
Inserts the new ACE.
Summary of Contents for E3800 Series
Page 2: ......
Page 3: ...HP Networking E3800 Switches Access Security Guide September 2011 KA 15 03 ...
Page 30: ...xxviii ...
Page 86: ...2 36 Configuring Username and Password Security Password Recovery ...
Page 186: ...4 72 Web and MAC Authentication Client Status ...
Page 364: ...8 32 Configuring Secure Shell SSH Messages Related to SSH Operation ...
Page 510: ...10 130 IPv4 Access Control Lists ACLs General ACL Operating Notes ...
Page 548: ...11 38 Configuring Advanced Threat Protection Using the Instrumentation Monitor ...
Page 572: ...12 24 Traffic Security Filters and Monitors Configuring Traffic Security Filters ...
Page 730: ...20 Index ...
Page 731: ......