15-76
Catalyst 6500 Series Switch Software Configuration Guide—Release 8.7
OL-8978-04
Chapter 15 Configuring Access Control
Configuring Port-Based ACLs
This example shows how to display the ACL information for an EtherChannel:
Console> (enable) show port channel 3/40 info security-acl
Port ACL-Interface Type
----- ------------------
3/37 port-based
3/38 port-based
Port ACL name Type
----- -------------------------------- ------
3/37 ipacl1 IP
3/38 ipacl1 IP
Console> (enable)
PACL Configuration Examples
This section contains the PACL configuration examples.
Note If no ACL is mapped to a port, the port reverts internally to VLAN-based mode.
Example 1
This example shows how to map an ACL to a port when the port is in VLAN-based mode:
Console> (enable) set port security-acl 3/1 vlan-based
ACL interface is set to vlan-based mode for port(s) 3/1.
Console> (enable) set security acl map ipacl1 3/1
Port 3/1 is set to vlan-based mode, config is saved in Nvram.
Config will be applied when the port is set to port-based/merge.
Console> (enable) show security acl map config 3/1
Port ACL name Type
----- -------------------------------- ----
3/1 ipacl1 IP
Console> (enable) show security acl map runtime 3/1
Port ACL name Type
----- -------------------------------- ----
No ACL mapped to port 3/1.
Console> (enable) set port security-acl 3/1 port-based
Warning: Vlan-based ACL features will be disabled on port(s) 3/1.
ACL interface is set to port-based mode for port(s) 3/1.
Console> (enable) show security acl map config 3/1
Port ACL name Type
----- -------------------------------- ----
3/1 ipacl1 IP
Console> (enable) show security acl map runtime 3/1
Port ACL name Type
----- -------------------------------- ----
3/1 ipacl1 IP
Console> (enable)
To Next Page
Loading...
