Ethernet Fabric (VDX, CNA)

Reply
New Member
Posts: 1
Registered: ‎12-12-2017

how to apply extended acl on vlan interface in BR-VDX6740 ?

Hello,

I have defind an extended acl to monitor traffic but not able to apply it on the Vlan interface. !

 

ACL

-----

ip access-list extended ToMonitor
seq 10 permit ip host 172.16.50.238 any log
seq 20 permit ip any host 172.16.50.238 log
seq 30 permit ip host 172.16.55.143 any log
seq 40 permit ip any host 172.16.55.143 log
seq 50 permit ip host 172.16.55.144 any log
seq 60 permit ip any host 172.16.55.144 log
seq 70 permit ip host 172.16.55.161 any log
seq 80 permit ip any host 172.16.55.161 log
seq 90 permit ip any any

 

Indication for Hardware,

--------------------------------

swi033# show hardware-profile current rbridge-id 33

rbridge-id: 33 switch type: BR-VDX6740

current TCAM profile: DEFAULT
________________________________________________________
L2 Path Select FCoE: 512
MAC ACL Based QoS Policy Entries (Ingress): 512
L2 Path Select FCoE Zones: 0
MAC Security ACL Entries (Ingress): 512
MAC Policy Based forwarding entries: 0
L2 Multicast No Flood Entries (Ingress): 0
IPV4 ACL Based QoS Policy Entries (Ingress): 512
IPV4 Multicast Entries (Ingress): 1024
IPV4 Policy Based Routing Entries (Ingress): 512
IPV4 Security ACL Entries (Ingress): 512
L3 Path Select FCoE: 512
IPV6 Policy Based Routing Entries (Ingress): 0
IPV6 ACL Based QoS Policy Entries (Ingress): 0
IPV6 Multicast Entries (Ingress): 0
IPV6 Security ACL Entries (Ingress): 512
IPV4 Forwarding Entries: 4096
L2 Forward FCoE: 2048
IPV6 Forwarding Entries: 1024
MAC Security ACL Entries (Egress): 128
MAC ACL Based QoS Policy Entries (Egress): 128
IPV4 Security ACL Entries (Egress): 128
IPV4 ACL Based QoS Policy Entries (Egress): 0
IPV6 Security ACL Entries (Egress): 128
IPV6 ACL Based QoS Policy Entries (Egress): 0
FCoE Egress ACL: 128
L2 MAC Classifier: 256
L2 MAC Classifier Prio: 0
VLN Classifier: 4096
Policy Classifier: 0
________________________________________________________

current route table profile: DEFAULT
________________________________________________________
ipv4_routes: 4096
max_nexthops: 1024
ipv6_routes: 1024
ipv4_neighbor_cache: 16384
ipv6_neighbor_cache: 4096
fcoe_domain_routes: 2048

---------------------------------------------------

swi033# sh ver

Network Operating System Software
Network Operating System Version: 5.0.2
Copyright (c) 1995-2014 Brocade Communications Systems, Inc.
Firmware name: 5.0.2b1
Build Time: 02:01:23 Apr 9, 2016
Install Time: 16:25:35 Jul 1, 2016
Kernel: 2.6.34.6

BootProm: 1.0.1
Control Processor: e500mc with 4096 MB of memory

Slot Name Primary/Secondary Versions Status
---------------------------------------------------------------------------
SW/0 NOS 5.0.2b1 ACTIVE*
5.0.2b1
SW/1 NOS 5.0.2b1 STANDBY
5.0.2b1

________________________________________________________

 

Can you help ?

External Moderator
Posts: 5,073
Registered: ‎02-23-2004

Re: how to apply extended acl on vlan interface in BR-VDX6740 ?

Join the Community

Get quick and easy access to valuable resource designed to help you manage your Brocade Network.