Cisco Community
English
Register
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
431
Views
0
Helpful
1
Replies
Highlighted
steve switzer
Beginner
Beginner
‎05-05-2015 07:34 AM
‎05-05-2015 07:34 AM

Vlan acl s on cisco nexus 7000

Hi All

 

I need to configure an acl on a vlan on a nexus 7000.

Now i have a guide but i want to convert an old style access list with permits denys and finally a deny 

all at the end into a nexus 7000 acl

so 

Do i do it like this ..

conf t

vlan access-map acl-map
  match mac address acl-mac-01  (permits)
  action forward 
  match mac address acl-drop1 (denys)
  action drop
  match mac address acl-perm02 (permits)
action forward 
  match mac address acl-drop2 (deny all)
  action drop

vlan filter acl-map vlan-list 50-82

 

 

Is that correct because the guide i have doesnt specify if you can ghave multiple acls on an acl-map or not 

Otherwise how can you use an acl with multiple alternating permits and denies ?

 

Steve

 

W

 

Labels:
0 Helpful
Reply
1 REPLY 1
Highlighted
steve switzer
Beginner
Beginner
‎05-06-2015 03:27 AM
‎05-06-2015 03:27 AM

Problem for me at  the moment is i wanted to do some specific permits 

followed by some specific drops , followed by some specific permits

It seems i cannot do this so i am stuck !

 

Ip access-list acl-mac-01 

10 remark is Guest for forescout

20 permit ip any xxx.xx.xxx.0/24 eq 8080

30 permit ip any xxx.xx.xxx.0/24 eq 9997-9998

 

Ip access-list acl-drop-01 

10 deny ip any xxx.xx.0.0/16

20 deny ip any 10.0.0.0/8

 

 

Ip access-list acl-perm02

10 permit ip any any eq 443

20 permit ip any any eq 80

 

Steve

0 Helpful
Reply
Latest Contents
Probem with associciation pkt files on Windows 10
Created by draskodivic on 02-28-2021 11:08 AM
0
0
0
0
HiI have been using Packet Tracer for a long time. I first used it on Windows 7 and it was all O.K.Now that I bought a new PC with Windows 10 (last ver.) I have a problem that the association with the pkt extension of my files only runs an empty Packet Tr... view more
Cisco Secure Network Access Bridges the Gap
Created by Kelli Glass on 02-26-2021 04:19 PM
0
0
0
0
Cisco Secure Network Access is helping IT to bridge the gap between what is essential to the business and what the network delivers and to build the next-generation campus network for an unplugged and uninterrupted experience. Learn more about how these w... view more
Community Live Video - New Additions to the Catalyst 8000 Fa...
Created by Cisco Moderador on 02-24-2021 08:49 AM
0
0
0
0
(view in My Videos) Community Live- New Additions to the Catalyst 8000 Family (Live event -  Tuesday, 23 February, 2021 at 10:00 am Pacific/ 1:00 pm Eastern / 7:00 pm Paris)- This event had place on Tuesday 23rd, February 2021 at 10:00 hrs PDT... view more
New Additions to the Catalyst 8000 Family- FAQ
Created by Cisco Moderador on 02-24-2021 07:23 AM
0
0
0
0
This event had place on Tuesday 23rd, February 2021 at 10hrs PDT  Introduction Designed for an intent-based network, the Cisco Catalyst 8000 Edge Platforms family offers best-in-class networking and security combined. The platforms, available in b... view more
New Additions to the Catalyst 8000 Family- AMA Event
Created by Cisco Moderador on 02-22-2021 05:26 AM
0
0
0
0
To participate in this event, please use the  button to ask your questions New Additions to the Catalyst 8000 Family This forum is a chance to clarify all your questions related to the Catalyst 8k Family! Designed for an intent-based network, the Ci... view more
Content for Community-Ad