F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices Access Control Configuration Guide-6PW100

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module

Task Command

Remarks

Display ACL acceleration

information of the specified or all

ACLs (including IPv4 basic ACLs

and IPv4 advanced ACLs)

display acl accelerate { acl-number | all } [ |

{ begin | exclude | include }

regular-expression ]

Available in any view.

Support for this

command varies by

device model. For more

information, see Access

Control Command

Reference.

Display configuration and match

statistics for IPv6 basic and IPv6

advanced ACLs.

display acl ipv6 { acl6-number | all | name

acl6-name } [ | { begin | exclude | include }

regular-expression ]

Available in any view.

Clear statistics for one or all IPv4

basic, IPv4 advanced, and

Ethernet frame header ACLs.

reset acl counter { acl-number | all | name

acl-name }

Available in user view.

Clear statistics for one or all IPv6

basic and advanced ACLs.

reset acl ipv6 counter { acl6-number | all |

name acl6-name }

Available in user view.

125BIPv6 advanced ACL configuration example

IPv4 ACLs are usually used together with NAT. For IPv4 configuration examples, see NAT and ALG

Configuration Guide.

271BNetwork requirements

A company interconnects its departments through Firewall. Configure an ACL to do the following:

• Permit access from the President's office at any time to the financial database server.

• Permit access from the Financial department to the database server only during working hours (from

8:00 to 18:00) on working days.

• Deny access from any other department to the database server.

Figure 22 Network diagram

President office

1001::/16

Financial department

1002::/16

Marketing department

1003::/16

Firewall

GE0/1

GE0/4GE0/2

GE0/3

Financial database server

1000::100/16