Concept Guide

ManualsBrandsDell ManualsAccess PlatformsW-IAP204/205

381

382

383

384

385

386

387

388

389

390

384| firewall cp Dell Networking W-Series ArubaOS 6.5.x| Reference Guide

Parameter Description Range Default

snmp

Specifies the Simple Network Management

Protocol.

— —

ssh

Specifies the Secure Shell. — —

telnet

Specifies the Telnet protocol. — —

tftp

Specifies the Trivial File Transfer Protocol. — —

bandwidth-contract <name>

Specify the name of a bandwidth contract

defined via the cp-bandwidth-contract

command.

— —

Usage Guidelines

This command turns the session ACL from a blacklist to a whitelist. A rule must exist that explicitly permits the

session before it is forwarded to the controller and the last rule in the list denies everything else.

Example

The following command creates a whitelist ACL that allows on with the source address as 10.10.10.10 and the

source mask as 2.2.2.2. The protocol is FTP and the bandwidth contract name is mycontract.

(host) (config-fw-cp) #ipv4 permit 10.10.10.10 2.2.2.2 proto ftp bandwidth-contract name

mycontract

The following command creates a a whitelist ACL entry that denies traffic using protocol 2 on port 5000 from

being forwarded to the controller:

(host) (config-fw-cp) #deny proto 6 ports 5000 6000

Related Commands

Command Description Mode

show firewall-cp

Show Control Processor (CP) whitelist ACL info. Enable or Config

modes

cp-bandwidth-contract

This command configures a bandwidth contract

traffic rate which can then be associated with a

whitelist session ACL.

Enable or Config

modes