Cisco Systems OL-6244-01 Switch User Manual


  Open as PDF
of 1438
 
2-532
Catalyst 6500 Series Switch Command Reference—Release 8.4
OL-6244-01
Chapter 2 Catalyst 6500 Series Switch and ROM Monitor Commands
set port security-acl
set port security-acl
To specify the port access control list (PACL) mode, use the set port security-acl command.
set port security-acl mod/ports... {port-based | vlan-based | merge}
Syntax Description
Defaults The port security ACL mode is vlan-based to keep the existing VACL configuration active.
Command Types Switch command.
Command Modes Privileged.
Usage Guidelines Configuring port access control lists is only available on PFC3-based forwarding engines.
For more information about PACLs, refer to the "Configuring Access Control" chapter of the
Catalyst 6500 Series Switch Software Configuration Guide.
Examples This example shows how to set the PACL mode to port-based mode on port 3/1:
Console> (enable) set port security-acl 3/1 port-based
Warning: Vlan-based ACL features will be disabled on port(s) 3/1.
ACL interface is set to port-based mode for port(s) 3/1.
Console> (enable)
This example shows how to set the PACL mode to VLAN-based mode on port 3/1:
Console> (enable) set port security-acl 3/1 vlan-based
ACL interface is set to vlan-based mode for port(s) 3/1.
Console> (enable)
This example shows how to set the PACL mode to merge mode on port 3/1:
Console> (enable) set port security-acl 3/1 merge
ACL interface is set to merge mode for port(s) 3/1.
Console> (enable)
This example shows the message that displays when merge mode cannot work because a port is a trunk
port:
Console> (enable) set port security-acl 3/1-4 merge
ACL interface cannot be in merge mode on multi-vlan access port 3/1.
ACL interface is set to merge mode for port(s) 3/2.
ACL interface is set to merge mode for port(s) 3/3.
mod/ports... Number of the module and the ports on the module.
port-based Specifies the mode in which the PACL overrides the VACL and RACL.
vlan-based Specifies the mode in which the VACL and RACL override the PACL.
merge Specifies the mode in which the ingress PACL, VACL, and RACL merge.
 previous next