Hi Guys,
I'm trying configure access-list on port-channel in N7K.
Ports connected to ESXi host with ~50 VMs
I want to filter access for only 1 VM (with IP A.B.C.D), with no impact to other VMs.
IP access list TEST
10 permit ip X.X.X.1/32 10.A.B.C.D/32
20 permit ip X.X.X.2/32 10.A.B.C.D/32
30 permit ip X.X.X.3/32 10.A.B.C.D/32
40 permit ip X.X.X.4/32 10.A.B.C.D/32
50 deny ip any any
interface port-channel23
description VM1
switchport
switchport mode trunk
spanning-tree port type edge trunk
ip port access-group TEST in
This is what I applied. And it's block everything, all VMs become unreachable.
Any idea?
What I'm missing (
