Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
370
Views
0
Helpful
0
Replies

ESS3300 switch rejects "ip access-group" command on SVIs

Mark Cantrell
Level 1
Level 1

‎01-03-2022 02:54 PM - edited ‎01-03-2022 02:55 PM

I am attempting to perform simple ACL-based packet filtering on a Cisco ESS3300-based (ruggedized) switch that is running IOS-XE version 17.06.02 (network-advantage feature set).  The switch allows me to configure SVIs, and performs inter-VLAN routing as expected (even though the "ip routing" command is rejected).  However, the switch rejects the "ip access-group" command on SVIs, and that command is not listed in context-sensitive help while in interface configuration mode.

I don't see any mention of this limitation in the configuration guides or online discussions. 

Am I missing something?

 

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card