Home » HP Manuals » Desktops » HP BladeSystem bc2800 » Manual Viewer

HP BladeSystem bc2800 Command Line Interface Reference Guide HP BladeSystem PC - Page 61

deny (IP

View all HP BladeSystem bc2800 manuals

Add to My Manuals
Save this manual to your list of manuals

Page 61 highlights

ACL Commands deny (IP) The deny IP-Access List Configuration mode command denies traffic if the conditions defined in the deny statement match. Syntax deny [disable-port] {any | protocol} {any | {source source-wildcard}} {any | {destination destination-wildcard}} [dscp dscp number | ip-precedence ip-precedence] deny {any | protocol} {any | {source source-wildcard}} {any | {destination destination-wildcard}} [dscp dscp-number | ip-precedence ip-precedence] deny-icmp {any | {source source-wildcard}} {any | {destination destination-wildcard}} {any | icmp-type} {any | icmp-code} [dscp number | ip-precedence number] deny-igmp {any | {source source-wildcard}} {any | {destination destination-wildcard}} {any | igmp-type} [dscp number | ip-precedence number] Parameters n disable-port - Specifies that the port should be disabled if the conditions defined match. n source - Specifies the IP address or host name from which the packet was sent. Specify any to indicate IP address 0.0.0.0 and mask 255.255.255.255. n source-wildcard - Specifies wildcard bits by placing 1s in bit positions to be ignored. Specify any to indicate IP address 0.0.0.0 and mask 255.255.255.255. n destination - Specifies the IP address or host name to which the packet is being sent. Specify any to indicate IP address 0.0.0.0 and mask 255.255.255.255. n destination-wildcard - Specifies wildcard bits by placing 1s in bit positions to be ignored. Specify any to indicate IP address 0.0.0.0 and mask 255.255.255.255. n protocol - Specifies the abbreviated name or number of an IP protocol. The following table lists protocols that can be specified: IP Protocol Internet Control Message Protocol Internet Group Management Protocol IP in IP (encapsulation) Protocol Transmission Control Protocol Exterior Gateway Protocol Interior Gateway Protocol User Datagram Protocol Host Monitoring Protocol Reliable Data Protocol Inter-Domain Policy Routing Protocol Ipv6 Protocol Routing Header for IPv6 Fragment Header for IPv6 Abbreviated Name icmp igmp ipinip tcp egp igp udp hmp rdp idpr ipv6 ipv6-route ipv6-frag Protocol Number 1 2 4 6 8 9 17 20 27 35 41 43 44 HP PC Blade Switch CLI Reference Guide www.hp.com 4-5

Section	Page
Command Line Interface Reference Guide	1
HP BladeSystem PC Blade Switch	1
Contents	3
Command Line Interface	13
Using the Command Line Interface (CLI)	13
Entering Commands	15
Command Groups	19
802.1x Commands	21
aaa authentication dot1x	21
dot1x system-auth-control	22
dot1x port-control	23
dot1x re-authentication	24
dot1x timeout re-authperiod	25
dot1x re-authenticate	26
dot1x timeout quiet-period	27
dot1x timeout tx-period	28
dot1x max-req	29
dot1x timeout supp-timeout	30
dot1x timeout server-timeout	31
show dot1x	32
show dot1x users	35
show dot1x statistics	36
Advanced Features	38
dot1x auth-not-req	38
dot1x multiple-hosts	39
dot1x single-host-violation	40
dot1x guest-vlan	41
dot1x guest-vlan enable	42
show dot1x advanced	43
AAA Commands	45
aaa authentication login	45
aaa authentication enable	47
login authentication	49
enable authentication	50
ip http authentication	51
ip https authentication	52
show authentication methods	53
password	54
enable password	55
username	56
ACL Commands	57
ip access-list	57
permit (IP)	58
deny (IP)	61
mac access-list	63
permit (MAC)	64
deny (MAC)	65
service-acl	67
show access-lists	68
Address Table Commands	69
bridge address	69
bridge multicast filtering	71
bridge multicast address	72
bridge multicast forbidden address	73
bridge multicast forward-all	74
bridge multicast forbidden forward-all	75
bridge aging-time	76
clear bridge	77
port security	78
port security mode	79
port security max	80
port security routed secure-address	81
show bridge address-table	82
show bridge address-table static	83
show bridge address-table count	84
show bridge multicast address-table	85
show bridge multicast filtering	87
show ports security	88
show ports security addresses	89
Clock Commands	91
clock set	91
clock source	92
clock timezone	93
clock summer-time	94
sntp authentication-key	96
sntp authenticate	97
sntp trusted-key	98
sntp client poll timer	99
sntp broadcast client enable	100
sntp anycast client enable	101
sntp client enable (Interface)	102
sntp unicast client enable	103
sntp unicast client poll	104
sntp server	105
show clock	106
show sntp configuration	107
show sntp status	108
Configuration and Image File Commands	109
copy	109
delete	112
boot system	113
show running-config	114
show startup-config	116
show bootvar	118
Ethernet Configuration Commands	119
interface ethernet	119
interface range ethernet	120
shutdown	121
description	122
speed	123
duplex	124
negotiation	125
flowcontrol	126
mdix	127
back-pressure	128
clear counters	129
set interface active	130
show interfaces advertise	131
show interfaces configuration	132
show interfaces status	133
show interfaces description	134
show interfaces counters	135
port storm-control include-multicast (IC)	138
port storm-control broadcast enable	139
port storm-control broadcast rate	140
show ports storm-control	141
GVRP Commands	143
gvrp enable (Global)	143
gvrp enable (Interface)	144
garp timer	145
gvrp vlan-creation-forbid	146
gvrp registration-forbid	147
clear gvrp statistics	148
show gvrp configuration	149
show gvrp statistics	150
show gvrp error-statistics	151
IGMP Snooping Commands	153
ip igmp snooping (Global)	153
ip igmp snooping (Interface)	154
nip igmp snooping host-time-out	155
ip igmp snooping mrouter-time-out	156
ip igmp snooping mrouter learn-pim-dvmrp	157
ip igmp snooping leave-time-out	158
show ip igmp snooping mrouter	159
show ip igmp snooping interface	160
show ip igmp snooping groups	161
IP Addressing Commands	163
ip address	163
ip address dhcp	164
ip default-gateway	165
show ip interface	166
arp	167
arp timeout	168
clear arp-cache	169
show arp	170
ip domain-lookup	171
ip domain-name	172
ip name-server	173
ip host	174
clear host	175
clear host dhcp	176
show hosts	177
LACP Commands	179
lacp system-priority	179
lacp port-priority	180
lacp timeout	181
show lacp ethernet	182
show lacp port-channel	184
Line Commands	185
line	185
speed	186
autobaud	187
exec-timeout	188
history	189
history size	190
terminal history	191
terminal history size	192
show line	193
Management ACL Commands	195
management access-list	195
permit (Management)	197
deny (Management)	198
management access-class	199
show management access-list	200
show management access-class	201
PHY Diagnostics Commands	203
test copper-port tdr	203
show copper-ports tdr	204
show copper-ports cable-length	205
show fiber-ports optical-transceiver	206
Port Channel Commands	209
interface port-channel	209
interface range port-channel	210
channel-group	211
show interfaces port-channel	212
Port Monitor Commands	213
port monitor	213
show ports monitor	215
QoS Commands	217
qos	217
show qos	218
class-map	219
show class-map	221
match	222
policy-map	223
class	224
show policy-map	225
trust cos-dscp	226
set	227
police	228
service-policy	229
qos aggregate-policer	230
show qos aggregate-policer	231
police aggregate	232
wrr-queue cos-map	233
priority-queue out num-of-queues	234
traffic-shape	235
show qos interface	236
wrr-queue threshold	238
qos map dscp-dp	239
qos map policed-dscp	240
qos map dscp-queue	241
qos trust (Global)	242
qos cos	244
qos dscp-mutation	245
qos map dscp-mutation	246
RADIUS Commands	247
radius-server host	247
radius-server key	249
radius-server retransmit	250
radius-server source-ip	251
radius-server timeout	252
radius-server deadtime	253
show radius-servers	254
RMON Commands	255
show rmon statistics	255
rmon collection history	258
show rmon collection history	259
show rmon history	260
rmon alarm	263
show rmon alarm-table	265
show rmon alarm	266
rmon event	268
show rmon events	269
show rmon log	270
rmon table-size	271
SNMP Commands	273
snmp-server community	273
snmp-server view	275
snmp-server group	276
snmp-server user	277
snmp-server engineid local	279
snmp-server enable traps	281
snmp-server filter	282
snmp-server host	283
snmp-server v3-host	285
snmp-server trap authentication	286
snmp-server contact	287
snmp-server location	288
snmp-server set	289
show snmp	290
show snmp engineid	292
show snmp views	293
show snmp groups	294
show snmp filters	295
show snmp users	296
Spanning-Tree Commands	297
spanning-tree	297
spanning-tree mode	298
spanning-tree forward-time	299
spanning-tree hello-time	300
spanning-tree max-age	301
spanning-tree priority	302
spanning-tree disable	303
spanning-tree cost	304
spanning-tree port-priority	305
spanning-tree portfast	306
spanning-tree link-type	307
spanning-tree pathcost method	308
spanning-tree bpdu	309
clear spanning-tree detected-protocols	310
spanning-tree mst priority	311
spanning-tree mst max-hops	312
spanning-tree mst port-priority	313
spanning-tree mst cost	314
spanning-tree mst configuration	315
instance (mst)	316
name (mst)	317
revision (mst)	318
show (mst)	319
exit (mst)	320
abort (mst)	321
spanning-tree guard root	322
show spanning-tree	323
spanning-tree pvst-interop	334
spanning-tree mst mstp-rstp	335
SSH Commands	337
ip ssh port	337
ip ssh server	338
crypto key generate dsa	339
crypto key generate rsa	340
ip ssh pubkey-auth	341
crypto key pubkey-chain ssh	342
user-key	343
key-string	344
show ip ssh	346
Syslog Commands	347
logging on	347
logging	348
logging console	349
logging buffered	350
logging buffered size	351
clear logging	352
logging file	353
clear logging file	354
aaa logging	355
file-system logging	356
management logging	357
show logging	358
show logging file	361
System Management Commands	363
ping	363
traceroute	365
telnet	367
resume	370
reload	371
hostname	372
show users	373
show sessions	374
show system	375
show version	376
service cpu-utilization	377
show cpu utilization	378
TACACS+ Commands	379
tacacs-server host	379
tacacs-server key	381
tacacs-server timeout	382
tacacs-server source-ip	383
show tacacs	384
User Interface Commands	385
do	385
enable	386
disable	387
login	388
configure	389
exit (Configuration)	390
exit	391
end	392
help	393
terminal data-dump	394
show history	395
show privilege	396
VLAN Commands	397
vlan database	397
vlan	398
interface vlan	399
interface range vlan	400
name	401
switchport mode	402
switchport access vlan	403
switchport trunk allowed vlan	404
switchport trunk native vlan	405
switchport general allowed vlan	406
switchport general pvid	407
switchport general ingress-filtering disable	408
switchport general acceptable-frame-type tagged-only	409
switchport forbidden vlan	410
ip internal-usage-vlan	411
show vlan	412
show vlan internal usage	413
show interfaces switchport	414
Web Server Commands	417
ip http server	417
ip http port	418
ip https server	419
ip https port	420
crypto certificate generate	421
crypto certificate request	423
crypto certificate import	425
ip https certificate	427
show crypto certificate mycertificate	428
show ip http	429
show ip https	430

Match case Limit results 1 per page

HP PC Blade Switch CLI Reference Guide

www.hp.com

4-5

ACL Commands

deny (IP)

The

deny

IP-Access List Configuration mode command denies

traffic if the conditions defined in

the deny statement match.

Syntax

deny [disable-port]

{

any

protocol

} {

any

| {

source source-wildcard

}} {

any

| {

destination

destination-wildcard

}} [

dscp

dscp number

ip-precedence

]

deny

{

any | protocol

} {

any

| {

source

source-wildcard

}} {

any

| {

destination

destination-wildcard

}} [

dscp

dscp-number

ip-precedence

]

deny-icmp

{any | {

source

source-wildcard

}} {

any

| {

destination

destination-wildcard

}} {

any

icmp-type

} {

any

icmp-code

} [

dscp

number

ip-precedence

number

]

deny-igmp

{

any

| {

source

source-wildcard

}} {

any

| {

destination

destination-wildcard

}} {

any

igmp-type

} [

dscp

number

ip-precedence

number

]

Parameters

disable-port

— Specifies that the port should be disabled if the conditions defined match.

source

— Specifies the IP address or host name from which the packet was sent. Specify

any

to indicate IP address 0.0.0.0 and mask 255.255.255.255.

source-wildcard

— Specifies wildcard bits by placing 1s in bit positions to be ignored.

Specify

any

to indicate IP address 0.0.0.0 and mask 255.255.255.255.

destination

— Specifies the IP address or host name to which the packet is being sent.

Specify

any

to indicate IP address 0.0.0.0 and mask 255.255.255.255.

destination-wildcard

— Specifies wildcard bits by placing 1s in bit positions to be ignored.

Specify

any

to indicate IP address 0.0.0.0 and mask 255.255.255.255.

protocol

— Specifies the abbreviated name or number of an IP protocol.

The following table lists protocols that can be specified:

IP Protocol

Abbreviated Name

Protocol Number

Internet Control Message Protocol

icmp

Internet Group Management Protocol

igmp

IP in IP (encapsulation) Protocol

ipinip

Transmission Control Protocol

tcp

Exterior Gateway Protocol

egp

Interior Gateway Protocol

igp

User Datagram Protocol

udp

Host Monitoring Protocol

hmp

Reliable Data Protocol

rdp

Inter-Domain Policy Routing Protocol

idpr

Ipv6 Protocol

ipv6

Routing Header for IPv6

ipv6-route

Fragment Header for IPv6

ipv6-frag