Converting CatOS Security ACL to IOS

Unanswered Question
Aug 12th, 2009

We are trying to convert CatOS security ACL - preventing DMZ machine from talking to other machines and permitting talks between certian machine. I have been looking for this conversion tool on Cisco Web Site but couldn't find it! I downloaded a 137 MB file but after installation it didn't run even aftet the service was started!

is there an online tool that can be used?

or any othet ways that i can accomplich this?

Also, I am trying to understand how a pure L2 Switch can do L3 ACL?

Please advise.



I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
jbrenesj Wed, 08/12/2009 - 09:30

Cisco EDI CatOS to IOS Configuration Conversion Tool

Download the file from

(registered customers only)

- The switch has specialized hardware called TCAM in which it can program several entries including MAC addresses, IPs, QoS and ACLs and it does not require CPU processing for some of these tasks, this is why a L2 can program L3 entries in TCAM without being a routing capable device

masoodabooali Wed, 08/12/2009 - 10:55


I had this downloaded before but it didn't work fo rme as I mentioned in my post.

Also, i cannot download the document as the page says Forbidden page and apperaantly my CCO account privilages aren't sufficient for this download!

I have all contract agreemnet under my CCO account and a Cisco professional!?

I came across a diddferent document that explians port or vlan secuirty allowing L3 ACL under a L2 switch port on CatOS Cisco 6500 switches.

can you please send me that document if possible?




This Discussion