03-11-2014 03:21 PM
I am trying to troubleshoot some ACLs limiting inter VLAN traffic on a test FCX648 switch running router code (FCXR07202d).
If I delete the access list and recreate it, the access list is still applied to interfaces.
Is there a way I can show all the interfaces an ACL is applied to?
Is there a way that I can show all the ACLs the are assigned to an interface?
Solved! Go to Solution.
03-11-2014 09:07 PM
There is no inbuilt command that I know of. However you can use piping to get what you need. I used he alias command to make the command acl that shows the port and if an acl is applied. (only port in this switch is 1/1/17 that has a ACL applied)
SSH@swtich(config)#alias acl=sh run | i 1/1|access-group
sh run | i 1/1|access-group
interface ethernet 1/1/2
interface ethernet 1/1/3
interface ethernet 1/1/4
interface ethernet 1/1/5
interface ethernet 1/1/6
interface ethernet 1/1/7
interface ethernet 1/1/8
interface ethernet 1/1/17
ip access-group 8 in
interface ethernet 1/1/23
03-12-2014 07:36 PM
It did get me on the right road to what I needed. As I had my access-group assigned to a ve, and not a 1/1/x, i changed it to
alias acl=sh run | i interface | access-group