IP broadcast ACLs (bACLs)

IP broadcast ACLs (bACLs) provide hardware-based filtering of IP subnet-based directed broadcast and network-address traffic.

Note

Note

Broadcast ACLs are not supported on SLX 9150, or SLX 9250 devices.
bACLs identify directed broadcast and network-address traffic by the specified subnets, and filter traffic on the corresponding VRF. The bACL implementation flow is as follows:
  1. Create a standard or extended IPv4 ACL.
  2. Within the ACL, define needed permit/deny rules.
  3. Apply the ACL at device level, interface level, or VE level.

This flow programs ACL entries in the CAM for each configured broadcast address and network address, eliminating the need to define rules for each trusted source/destination subnet combination.

9036684-01 Rev AA