Cisco Community
English
Register
Great changes are coming to Cisco Community in July. LEARN MORE
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
450
Views
0
Helpful
2
Replies
dfrenay_olabs
Beginner
Beginner
‎09-27-2013 05:29 AM
‎09-27-2013 05:29 AM

ACL IOS to CATOS ?

Hi,

I would put a ACL on a 6500 (WS-C6509 Software, Version NmpSW: 7.4(3)) on Catos.

On IOS here the ACL :

access-list 23

access-list 23 deny host xxx.xxx.xxx.xxx

access-list 23 permit any

int gigax/x

ip access-group 23 out

But on Catos I don't understand if it's possible ? How to translate this ios ACL to catos ?

Thank your for your help.

Regards.

David

Labels:
0 Helpful
2 REPLIES 2
Richard Michael
Cisco Employee
Cisco Employee
‎09-27-2013 06:15 AM
‎09-27-2013 06:15 AM

Hi David,

From my memories, it should be something like,

set security acl ip TEST

deny ip x.x.x.x 255.255.255.255 any

permit ip any any

Now do,

show security acl info TEST editbuffer

see the ACL which you have configured,

then,

commit security acl all

It is needed to be tied to a vlan VACL, then it should be something like,

set security acl map TEST

if you dont run a hybrid(MSFC/CATOS-L2) you can only use VACL which i believe you are...

Its been very longtime, so i havent tested the above config. moreover i dont have one CATOS box with me to test this

Thanks,

Richard.

*Rate if its useful

0 Helpful
glen.grant
Advisor
Advisor
In response to Richard Michael
‎09-27-2013 11:45 AM
‎09-27-2013 11:45 AM

  It wouldn't be any different for a hybrid IOs/cat box because you need a msfc card (L3) to do the routing so the commands would be exactly the same . 

0 Helpful
Latest Contents
AppDynamics
Created by mclymer on 06-30-2022 09:46 AM
0
0
0
0
Cisco Champion Radio: S9|E25 SD-WAN and Ubiquitous Cloud Sec...
Created by Amilee San Juan on 06-29-2022 02:35 PM
1
5
1
5
Listen: https://smarturl.it/CCRS9E25 Follow us: twitter.com/ciscochampions With applications and users everywhere, the networks are now, more than ever, being tasked with delivering consistent protection while providing an exceptional user exper... view more
Cisco Champion Radio: S9|E24 Cisco Radio Aware Routing
Created by Amilee San Juan on 06-28-2022 01:30 PM
0
0
0
0
Listen: https://smarturl.it/CCRS9E24 Follow us: https://twitter.com/CiscoChampion  Cisco Radio Aware Routing addresses several of the challenges faced when merging IP routing and radio communications in mobile networks, especially those exhibiti... view more
Cisco Champion Radio: S9|E23 The Cisco Catalyst 9136 Wi-Fi 6...
Created by Amilee San Juan on 06-28-2022 01:21 PM
0
0
0
0
Listen: https://smarturl.it/CCRS9E23 Follow us: https://twitter.com/CiscoChampion The Wi-Fi 6E Catalyst 9136 access point takes advantage of the 6-GHz band to produce a network that is more reliable and secure, with higher throughput, more ... view more
DR and the Type-2 LSA in OSPFv3 versus OSPFv2
Created by Meddane on 06-24-2022 04:35 PM
0
0
0
0
When moving from OSPFv2 to OSPFv3, there are many changes in the format of the LSAs Type, but the most known changes are: IP prefix informations are no longer carried in Type-1 LSA and Type-2 LSA, new LSAs Type 8 and 9 are added to carry these prefixes. L... view more
Ask a Question
Create
+ Discussion
+ Blog
+ Document
+ Video
+ Project Story
Find more resources
Discussions
Blogs
Documents
Events
Videos
Project Gallery
New Community Member Guide
Related support document topics
Recognize Your Peers
Spotlight Award Nomination
Content for Community-Ad