enable access-list refresh blackhole

Enables blackholing of packets during ACL (Access Control List) refresh.

enable access-list refresh blackhole

Syntax Description

This command has no arguments or variables.

Default

Enabled.

Usage Guidelines

When access control lists (ACLs) are refreshed, this command provides that any packets arriving during the refresh will be blackholed. As the ACL is being refreshed, packets may arrive while the ACL is in an indeterminate state, and packets may be permitted that otherwise are dropped. This feature protects the switch during an ACL refresh.

To disable this feature, use the following command:

disable access-list refresh blackhole

Example

The following command enables dropping of packets during an ACL refresh:

enable access-list refresh blackhole

History

This command was first available in ExtremeXOS 11.0.

Platform Availability

This command is available on the Summit X450-G2, X460-G2, X670-G2, X770, and ExtremeSwitching X440-G2, X590, X620, X690, X870 series switches.