Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
665
Views
0
Helpful
3
Replies

Outbound ACL on Nexus 9348 port

ajstan
Level 1
Level 1

‎02-20-2019 06:46 AM

Hi,

Hoping for a little help here. I'm trying to restrict traffic from certain vlans to a licence dongle server. 

 

To make it easy, I've gone with a nice simple extended access list in a lab. I want to stop host2 (10.10.10.2) from pinging host1 (10.10.10.1). here is my access list.

 

IP access list TEST
10 deny ip any host 10.10.10.1/32

 

Host1 is plugged into Eth1 and Host2 is plugged into Eth2.

 

interface Ethernet1/1
ip access-group TEST out
spanning-tree port type edge
no shutdown

 

However, this doesn't seem to work. Is the answer simple, you can't do Outbound ACLs? If I test this within IOS, the option to enable outbound access lists on the port doesn't even exist; only inbound.

 

Thanks

Labels:
0 Helpful
3 Replies 3

Jaderson Pessoa
VIP Alumni
VIP Alumni

‎02-20-2019 07:14 AM

try it.
10 deny ip 10.10.10.1 0.0.0.0 10.10.10.2 0.0.0.0
20 permit ip any any
Jaderson Pessoa
*** Rate All Helpful Responses ***
0 Helpful

ajstan
Level 1
Level 1
In response to Jaderson Pessoa

‎02-21-2019 04:20 AM

This didn't appear to make any difference :(

0 Helpful

Jaderson Pessoa
VIP Alumni
VIP Alumni
In response to ajstan

‎02-21-2019 04:38 AM

Did you a test?
Jaderson Pessoa
*** Rate All Helpful Responses ***
0 Helpful
Customers Also Viewed These Support Documents