beautypg.com

HP 6200YL User Manual

Page 276

background image

IPv6 Access Control Lists (ACLs)
Testing and Troubleshooting ACLs

In the above case:

Matches with ACEs 10 or 20 that originate on VLAN 20 will increment
only the counters for the instances of these two ACEs in the Test-1
VACL assignment on VLAN 20. The same counters in the instances of
ACL Test-1 assigned to VLANs 50 and 70 will not be incremented.

Any Telnet requests to 10.10.20.12 that originate on VLANs 50 or 70
will be filtered by instances of Test-1 assigned as RACLs, and will
increment the counters for ACE 10 on both RACL instances of the
Test-1 ACL.

Using the network in figure 8-48, a device at 10.10.20.4 on VLAN 20 attempting
to ping and Telnet to 10.10.20.12 is filtered through the VACL instance of the
“Test-1” ACL on VLAN 20 and results in the following:

ProCurve(config)# ping 10.10.20.2

10.10.20.2 is alive, time = 5 ms

ProCurve(config)# telnet 10.10.20.2

Telnet failed: Connection timed out.

ProCurve(config)#

Figure 8-49. Ping and Telnet from 10.10.20.4 to 10.10.20.2 Filtered by the Assignment

of “Test-1” as an IPv4 VACL on VLAN 20

8-100

This manual is related to the following products:
See also other documents in the category HP Computer Accessories: