NX-OS command to determine whether an ACL is applied on an intf or not

pavtel · ‎03-26-2023

Hello Team,

For my py-script I am looking for simple NX-OS show ??? command to check is ACL applied on an interface or not on my N9K.

Yep, I know `show runn int XXX`, but I am looking for this IOS analog:

#show ip interface | i access list
Outgoing access list is not set
Inbound access list is not set
Outgoing access list is not set
Inbound access list is not set

Thanks in advance!

marce1000 · ‎03-27-2023

- Try : show run aclmgr

M.

-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '

pavtel · ‎03-27-2023

Thanks, I know this command, bu I looking for no `sh run ***`

MHM Cisco World · ‎03-27-2023

show system internal access-list interface ex/x

pavtel · ‎03-27-2023

@MHM Cisco World wrote:
show system internal access-list interface ex/x

The problem is that we use L3 Vlan interfaces and ACL on them

# show system internal access-list interface ?
ethernet Ethernet IEEE 802.3z
port-channel Port Channel interface

MHM Cisco World · ‎03-27-2023

I will make double check

MHM Cisco World · ‎03-27-2023

show access-list summary

pavtel · ‎03-28-2023

Hi @MHM Cisco World thanks for this command + GNS3 testing.

I am looking command for FOR-LOOP in my python script
Imagine that I grab some LIST with IP interfaces (from sh ip int brie + TextFSM), most of them Vlan****.
Than I try to find some show command (not sh run int vlan****,. etc) in the loop that show me ALC name or absence of the ACL on that interface..
Yep, show access-list summary can solve this task, but in the opposite direction: list of ALCs->interfaces (I am looking for interfaces->ALC|no-ACL.
Thanks!

MHM Cisco World · ‎03-30-2023

you are so welcome
I will try find other command
thanks
MHM