35-4
Cisco 7600 Series Router Cisco IOS Software Configuration Guide, Release 12.2SX
OL-4266-08
Chapter 35 Configuring VLAN ACLs
Configuring VACLs
Multicast Packets
Figure 35-3 shows how ACLs are applied on packets that need multicast expansion. For packets that
need multicast expansion, the ACLs are applied in the following order:
1. Packets that need multicast expansion:
a. VACL for input VLAN
b. Input Cisco IOS ACL
2. Packets after multicast expansion:
a. Output Cisco IOS ACL
b. VACL for output VLAN
3. Packets originating from router—VACL for output VLAN
Figure 35-3 Applying VACLs on Multicast Packets
Configuring VACLs
These sections describe how to configure VACLs:
• VACL Configuration Overview, page 35-5
• Defining a VLAN Access Map, page 35-5
• Configuring a Match Clause in a VLAN Access Map Sequence, page 35-6
• Configuring an Action Clause in a VLAN Access Map Sequence, page 35-7
• Applying a VLAN Access Map, page 35-8
MSFC
Host B
(VLAN 20)
Host D
(VLAN 20)
Host A
(VLAN 10)
Host C
(VLAN 10)
120555
Bridged
Bridged
VACL
VACL (Not supported
on PFC2)
Input IOS ACL
Output IOS ACL
Routed
IOS ACL for
output VLAN
for packets
originating from
router
Supervisor
Engine
To Next Page
Loading...
Need help?
General
