Manualshelf

HP VPN Firewall Appliances Network Management Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
951952953954955956957958959960
929
For example, the following configuration filters routes 10.1.0.0/16, 10.2.0.0/16, and 10.3.0.0/16, but
allows other routes to pass.
<Sysname> system-view
[Sysname] ip ip-prefix abc index 10 deny 10.1.0.0 16
[Sysname] ip ip-prefix abc index 20 deny 10.2.0.0 16
[Sysname] ip ip-prefix abc index 30 deny 10.3.0.0 16
[Sysname] ip ip-prefix abc index 40 permit 0.0.0.0 0 less-equal 32
Configuring an IPv6 prefix list
Ste
p
Command
Remarks
1. Enter system view.
system-view N/A
2. Configure an IPv6
prefix list.
ip ipv6-prefix ipv6-prefix-name [ index index-number ] { deny
| permit } ipv6-address prefix-length [ greater-equal
min-prefix-length ] [ less-equal max-prefix-length ]
Not configured by
default.
If all items are set to deny mode, no routes can pass the IPv6 prefix list. Configure the permit :: 0
less-equal 128 item following multiple deny items to allow other IPv6 routing information to pass.
For example, the following configuration filters routes 2000:1::/48, 2000:2::/48, and 2000:3::/48,
but allows other routes to pass.
<Sysname> system-view
[Sysname] ip ipv6-prefix abc index 10 deny 2000:1:: 48
[Sysname] ip ipv6-prefix abc index 20 deny 2000:2:: 48
[Sysname] ip ipv6-prefix abc index 30 deny 2000:3:: 16
[Sysname] ip ipv6-prefix abc index 40 permit :: 0 less-equal 128
Configuring an AS path list
You can configure multiple items for an AS path list that is identified by number. The relationship between
items is logical OR. A route that matches one item matches the AS path list.
To configure an AS path list:
Ste
p
Command
Remarks
1. Enter system view.
system-view N/A
2. Configure an AS path
list.
ip as-path as-path-number { deny | permit }
regular-expression
Not configured by default.
Configuring a community list
You can configure multiple items for a community list that is identified by number. The relationship
between the items is logic OR. A route that matches one item matches the community list.
To configure a community list:
Ste
p
Command
Remarks
1. Enter system view.
system-view N/A