Manualshelf

R3204P16-HP Load Balancing Module Security Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
71727374757677787980
65
To do... Use the command…
Remarks
Display the configuration and
status of one or all time ranges
display time-range { time-range-name | all } Available in any view
Clear statistics for one or all IPv4
ACLs
reset acl counter { acl-number | all | name
acl-name }
Available in user view
ACL configuration examples
Network requirements
A company interconnects its departments through a LB module. Configure an ACL to:
Permit access from the President's office at any time to the salary database server.
Deny access from any other department to the database server during office hours (from 8:00 to
18:00) on working days.
Figure 69 Network diagram for IPv4 ACL configuration
Configuration procedure
1. Define a periodic time range.
# Create a periodic time range from 8:00 to 18:00 on working days.
<LB> system-view
[LB] time-range work 8:0 to 18:0 working-day
2. Create an ACL to control access to the salary server.
# Create an IPv4 advanced ACL numbered 3000 and enter its view.
[LB] acl number 3000
# Configure a rule to permit access from the President’s office to the financial database server.
[LB-acl-adv-3000] rule 1 permit ip source 129.111.1.2 0.0.0.0 destination 129.110.1.2
0.0.0.0
# Configure a rule to deny access from any other department to the salary database server during
working hours.