Filter
Top Products
Configuring ACLs
82
NXA-ENET24 - Software Management Guide
The switch does not support the explicit “deny any” rule for the egress IP ACL or the egress MAC
ACLs. If these rules are included in the ACL, and you attempt to bind the ACL to an interface for
egress checking, the bind operation will fail.
Command Attributes
Binding a Port to an Access Control List - Web
Click ACL, ACL Port Binding. Mark the Enable field for the port you want to bind to an ACL for ingress or
egress traffic, select the required ACL from the drop-down list, then click Apply.
Binding a Port to an Access Control List - CLI
This example assigns an IP and MAC ingress ACL to port 1, and an IP ingress ACL to port 2.
Command Attributes
•Port: Fixed port or SFP module. (Range: 1-24)
•IP: Specifies the IP ACL to bind to a port.
• MAC: Specifies the MAC ACL to bind to a port.
•IN: ACL for ingress packets.
•OUT: ACL for egress packets.
• ACL Name: Name of the ACL.
FIG. 82
Mapping ACLs to Port Ingress/Egress Queues
Console(config)#interface ethernet 1/1300
Console(config-if)#ip access-group david in273
Console(config-if)#mac access-group jerry in284
Console(config-if)#exit
Console(config)#interface ethernet 1/2
Console(config-if)#ip access-group david in
Console(config-if)#