cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
826
Views
5
Helpful
2
Replies

Basic ACE Rule testing fails on SG350-10P Switch

Filomena
Level 1
Level 1

Hi,

I configured a very basic ACE rule to debug switching issues I have on my network.

The switch is running on a single VLAN1, without extra modifications or services activated

Interface: VLAN1, IP Address type: DHCP, IP address: 10.0.0.11, Mask 255.255.255.0

 

I added an ACL rule with this ACE rule in GUI and saved the configuration:

Priority: 1, Action: deny,  Protocol: Any (IP)

Source IP : 10.0.0.109, Wildcard Mask: 0.0.0.0

Destination IP: 10.0.0.38, Wildcard Mask: 0.0.0.0

 

However, I can still access the 10.0.0.38 server from 10.0.0.109 client, both directly connected to the switch !

The problem is that it is the same with more complex rules using IP ranges.

Please help me debug the issue.

1 Accepted Solution

Accepted Solutions

balaji.bandi
Hall of Fame
Hall of Fame

have you mapped or bind  the ACL to VLAN ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

2 Replies 2

balaji.bandi
Hall of Fame
Hall of Fame

have you mapped or bind  the ACL to VLAN ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Many thanks, I wasn't aware I need to map it in the GUI

Is there any way to group ACL rules to be able to apply more than one ACL group to a single interface ?

Review Cisco Networking for a $25 gift card