09-27-2013 05:29 AM - edited 03-07-2019 03:42 PM
Hi,
I would put a ACL on a 6500 (WS-C6509 Software, Version NmpSW: 7.4(3)) on Catos.
On IOS here the ACL :
access-list 23
access-list 23 deny host xxx.xxx.xxx.xxx
access-list 23 permit any
int gigax/x
ip access-group 23 out
But on Catos I don't understand if it's possible ? How to translate this ios ACL to catos ?
Thank your for your help.
Regards.
David
09-27-2013 06:15 AM
Hi David,
From my memories, it should be something like,
set security acl ip TEST
deny ip x.x.x.x 255.255.255.255 any
permit ip any any
Now do,
show security acl info TEST editbuffer
see the ACL which you have configured,
then,
commit security acl all
It is needed to be tied to a vlan VACL, then it should be something like,
set security acl map TEST
if you dont run a hybrid(MSFC/CATOS-L2) you can only use VACL which i believe you are...
Its been very longtime, so i havent tested the above config. moreover i dont have one CATOS box with me to test this
Thanks,
Richard.
*Rate if its useful
09-27-2013 11:45 AM
It wouldn't be any different for a hybrid IOs/cat box because you need a msfc card (L3) to do the routing so the commands would be exactly the same .
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide