15-9
Catalyst 6500 Series Switch Software Configuration Guide—Release 8.7
OL-8978-04
Chapter 15 Configuring Access Control
Using Cisco IOS ACLs in your Network
2. Packets after multicast expansion:
a. Output Cisco IOS ACL
b. VACL for output VLAN
3. Packets originating from the router:
a. VACL for output VLAN
Figure 15-3 Applying ACLs on Multicast Packets
Using Cisco IOS ACLs in your Network
Note Configuring Cisco IOS ACLs on the Catalyst 6500 series switch routed-VLAN interfaces is the same as
configuring the ACLs on the other Cisco routers. To configure the Cisco IOS ACLs, see the
“Unsupported Features” section on page 15-44 and the “VACL Configuration Guidelines” section on
page 15-45. In addition, refer to the Cisco IOS configuration guides and command reference publication.
To configure the ACLs for IP, refer to the “Configuring IP Services” chapter in the Network Protocols
Configuration Guide, Part 1.
When a feature is configured on the router to process traffic (such as NAT), the Cisco IOS ACL that is
associated with the feature determines the specific traffic that is bridged to the router instead of being
switched in Layer 3. The router then applies the feature and routes the packet normally. Some exceptions
to this process are described in the “Hardware and Software Handling of Cisco IOS ACLs with PFC”
section on page 15-10.
To Next Page
Loading...
Need help?
General