Manualshelf

R3166-R3206-HP High-End Firewalls Access Control Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
11121314151617181920
6
Item Descri
p
tion
Time Range
Select a time range for the rule.
If you select None, the rule will be always effective.
Available time ranges are configured by selecting Resource > Time
Range from the navigation tree.
Non-first Fragments Only
Select this check box to apply the rule to only non-first fragments. If you
do no select this check box, the rule applies to all fragments and
non-fragments.
Logging
Select this check box to log matching packets.
A log entry contains the ACL rule number, action on the matching
packets, protocol that IP carries, source/destination address,
source/destination port number, and number of matching packets.
Source IP Address
Select the Source IP Address check box and type a source IP address and
source wildcard, in dotted decimal notation.
Source Wildcard
VPN Instance
Specify the VPN instance.
If you select None, the rule applies to only non-VPN packets.
Return to ACL configuration task list.
Configuring an advance ACL rule
Select Firewall > ACL from the navigation tree. Then, select the advanced ACL for which you want to
configure ACL rules from the ACL list in the right pane and click the corresponding icon in the
Operation column to list all existing rules of the ACL, as shown in Figure 5. C
lick Add to enter the
advanced ACL rule configuration page, as shown in Figure 6.
Figure 5 List of advanc
ed ACL rules