Traffic/Security Filters and Monitors

Overview

Overview

Source-port filters are available on the HP ProCurve switch models covered in this guide.

Introduction

Feature

Default

Menu

CLI

Web

configure source-port filters

none

n/a

page 9-18

n/a

display filter data

n/a

n/a

page 9-20

n/a

 

 

 

 

 

You can enhance in-band security and improve control over access to network resources by configuring static filters to forward (the default action) or drop unwanted traffic. That is, you can configure a traffic filter to either forward or drop all network traffic moving to outbound (destination) ports and trunks (if any) on the switch.

Filter Limits

The switch accepts up to 101 static filters. These limitations apply:

Source-port filters: up to 78

Using Port Trunks with Filters

The switch manages a port trunk as a single source or destination for source- port filtering. If you configure a port for filtering before adding it to a port trunk, the port retains the filter configuration, but suspends the filtering action while a member of the trunk. If you want a trunk to perform filtering, first configure the trunk, then configure the trunk for filtering. Refer to “Config- uring a Filter on a Port Trunk” on page 9-17.

9-2