in and out ACL on VLAN interfaces

Unanswered Question
Jan 16th, 2008
User Badges:


could you, please explain me direction when ACL is applied on VLAN interface?

For example, ACL applied like "out" on "interface VLAN 8" means that destination address is in VLAN 8 ?



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading. Wed, 01/16/2008 - 06:00
User Badges:
  • Silver, 250 points or more


It means that ACL is applicated to packet directed out that interface. It applies to packet with destination addressess not in VLAN 8.

I hope this helps.

Best regards.


acomiskey Wed, 01/16/2008 - 06:17
User Badges:
  • Green, 3000 points or more

Actually that's not correct, if you had the following...

interface vlan 8

ip access-group 100 out

...this means that the destination would be addresses in vlan 8.

If you had...

interface vlan 8

ip access-group 100 in

...then addresses in vlan 8 would be sources.


This Discussion