Comware

We have an ACL that we are trying to allow other vlans to access, however the documentation in does not seem to be correct, as it does not work. https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-c03187008

Based on the  bottom of page 8 in the lnk above it says the 0 bits you care about, or want a match on, and the 1 bits you don't so the rule would be:

 rule 24 permit ip source 10.10.0.0 0.0.255.255 destination 10.10.107.11 0

 rule 120 deny ip

Hi dcatcha,

May i know what is not working in the ACL. As per the documents its correct that "0" means to match on and "1" means anything. Can you please explain more the ACL issue and whats is not working.

ACL 

Rule 24 permit ip source 10.10.0.0 0.0.255.255 destination 10.10.107.11 0

Above ACL means, IP traffic from network 10.10.0.0/16 going to destination 10.10.107.11 should be permitted. So my question, is ACL permitting the traffic as per the rule?

N

You might need to clarify the IP address & default gateway of the testing and target devices, together with the IP configuration details of the relevant interfaces on the layer-3 device, and specify the interface where the ACL is applied.

I am responding for dcatcha. We resolved the issue. Instead of permitting  our VLANS to connect to VLAN 107,  we changed the rule to permit a specified IP on VLAN 107 to communicate with the other VLANS.