Creating an IPv4 ACL
Create an ACL to specify an ordered list of ACEs, or filter rules.
About this task
Do not configure IPv4 egress ACL filters on NNI ports because the system-generated egress vIST filter rules and the user-created IPv4 egress rules use the same filter hardware.
Procedure
Variable definitions
Use the data in the following table to use filter acl command.
Variable |
Value |
---|---|
<acl-id> |
Specifies the ACL ID. Use the CLI Help to see the available range for the switch. |
enable |
Enables the ACL state, and all associated ACEs. Enabled is the default state. |
matchType <both|terminatingNNIOnly|uniOnly> |
For inVsn ACL types, specifies the match type to associate with
the ACL. Valid options are:
|
name WORD<0-32> |
Specifies an optional descriptive name for the ACL. |
type <inVlan|inPort|outPort|inVsn> |
Specifies the ACL type. The values inVlan, inPort, and inVsn are ingress ACLs, and outPort is an egress ACL. A port-based ACL has precedence over a VLAN-based ACL. |