Ethernet Switches & Routers

Reply
rh1
Occasional Contributor
Posts: 18
Registered: ‎03-30-2011

ACLs for VLANs

Hi

Is there are VLAN ACLs feature similar to VACL's on Cisco supported on CER and FCX platforms ?

(http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.2SXF/native/configuration/guide/vacl.html)

I know that I can apply ACL to VE interface or physcial port. But what about ACLs for L2 ports or best particual VLANs ?

Rob

Contributor
Posts: 61
Registered: ‎12-08-2009

Re: ACLs for VLANs

Hi,

Here is a scenerio for having an ACL between two L2 switchport on one vlan,
As you can see the ACL 101, 172.16.10.70 ip addressed host can ping 172.16.10.188 but other icmp packets are not allowed to pass throug 1/1/11 interface.

Vlan 10

Untag e 1/1/1 to 1/1/12

access-list 101 permit icmp host 172.16.10.70 host 172.16.10.188

access-list 101 deny icmp any any

access-list 101 permit ip any any

interface ve 10

ip access-group 101 in ethernet  1/1/11


hope this helps.

Join the Community

Get quick and easy access to valuable resource designed to help you manage your Brocade Network.