ACL IOS to CATOS ? - Cisco Community

633

Views

0

Helpful

2

Replies

Hi,

I would put a ACL on a 6500 (WS-C6509 Software, Version NmpSW: 7.4(3)) on Catos.

On IOS here the ACL :

access-list 23

access-list 23 deny host xxx.xxx.xxx.xxx

access-list 23 permit any

int gigax/x

ip access-group 23 out

But on Catos I don't understand if it's possible ? How to translate this ios ACL to catos ?

Thank your for your help.

Regards.

David

2 Replies 2

Hi David,

From my memories, it should be something like,

set security acl ip TEST

deny ip x.x.x.x 255.255.255.255 any

permit ip any any

Now do,

show security acl info TEST editbuffer

see the ACL which you have configured,

then,

commit security acl all

It is needed to be tied to a vlan VACL, then it should be something like,

set security acl map TEST

if you dont run a hybrid(MSFC/CATOS-L2) you can only use VACL which i believe you are...

Its been very longtime, so i havent tested the above config. moreover i dont have one CATOS box with me to test this

Thanks,

Richard.

*Rate if its useful

It wouldn't be any different for a hybrid IOs/cat box because you need a msfc card (L3) to do the routing so the commands would be exactly the same .

Review Cisco Networking products for a $25 gift card