SROS Command Line Interface Reference Guide Global Configuration Mode Command Set

ip policy-class <policyname> max-sessions <number>

Use the ip policy-classcommand to create an access control policy and enter the access control policy. Use the no form of this command to delete an access policy and all the entries contained in it.

Note

Configured access policies will only be active if the ip firewall command has been entered

 

at the Global Configuration Mode prompt to enable the Secure Router OS security features.

 

All configuration parameters are valid, but no security data processing will be attempted

 

unless the security features are enabled.

 

 

Caution

Before applying an access control policy to an interface, verify your Telnet

 

connection will not be affected by the policy. If a policy is applied to the interface you

 

are connecting through and it does not allow Telnet traffic, your connection will be

 

lost.

 

 

Syntax Description

 

 

 

<policyname>

Alphanumeric descriptor (maximum of 255 characters) for identifying the

 

configured access policy. All access policy descriptors are case-sensitive.

max-sessions

Optional. Configure a maximum number of allowed policy sessions. This number

 

must be within the appropriate range limits. The limits are either 1-4000 or 1-30000

 

(depending on the type of Secure Router OS device you are using).

Default Values

By default, all Secure Router OS security features are disabled and there are no configured access lists.

Command Modes

(config)#

Global Configuration Mode

5991-2114

© Copyright 2005 Hewlett-Packard Development Company, L.P.

293

Page 292 Page 294
Page 293
Image 293
HP 7000 dl Router manual Ip policy-class policyname max-sessions number, Max-sessions
Page 292 Page 294
Top Page Image Contents