Print this pagePrint this page

Email this topicEmail this topic

View PDFView PDF

Download EPUBDownload EPUB

Implementing ACLs

To implement an ACL on your network:

  • Create the L3 or L2 ACL
  • Enter the rules and comments for the ACL:
    • For a L3 ACL the rules determine which packets will be forwarded or not forwarded on the routing interface this ACL will be applied to

      In the case of a policy ACL, the set DSCP parameter must be specified

    • For the L2 ACL the rules determine which packets will be restricted on the VLAN interface
  • Optionally manage ACLs of the same type by:
    • Copying a preexisting ACL to a non-existing ACL
    • Appending a preexisting ACL to another preexisting ACL
    • Entering an ACL comment entry
    • Deleting an ACL rule entry
    • Inserting a new ACL rule entry into an ACL
    • Moving an ACL rule to a new location in an ACL
  • Apply the L3 standard or extended ACL to a routing interface, the L3 policy ACL to the VRF global configuration mode, or the L2 ACL to a VLAN interface
  • Optionally apply an IPv4 and IPv6 L3 standard or extended ACL in both an inbound and outbound direction to a VRF
Published May 2016prev | next

Email this topicEmail this topic

Print this pagePrint this page