Manualshelf

Command Reference Guide

ManualsBrandsHP ManualsMoonshot SystemsHP Moonshot-45G Switch Module
651652653654655656657658659660
Management Access Control List
CLI Command Reference
September 2014 Page 651
HP Moonshot Switch Module CLI Command Reference
show service-policy
This command displays a summary of policy-oriented statistics information for all interfaces in the specified
direction.
The following information is repeated for each interface and direction (only those interfaces configured with
an attached policy are shown):
Management Access Control List
You can use a management Access Control List (ACL) to help control access to the switch management
interface. A management ACL can help ensure that only known and trusted devices are allowed to remotely
manage the switch via TCP/IP. Management ACLs are only configurable on IP (in-band) interfaces, not on the
service port.
When a Management ACL is enabled, incoming TCP packets initiating a connection (TCP SYN) and all UDP
packets will be filtered based on their source IP address and destination port. When the management ACL is
disabled, incoming TCP/UDP packets are not filtered and are processed normally.
management access-list
This command creates a management ACL. The management ACL name (name) can be up to 32 alphanumeric
characters. Executing this command enters into access-list configuration mode, where you must define the
denied or permitted access conditions with the
deny and permit commands. If no match criteria are defined
the default is deny. If you reenter to an access-list context, new rules are entered at the end of the access-list.
Format
show service-policy {in | out}
Mode User EXEC
Privileged EXEC
Term Definition
Interface unit/slot/port
Operational
Status
The current operational status of this DiffServ service interface.
Policy Name The name of the policy attached to the interface.
Format
management access-list name
Mode Global Config