VLAN Access-map Logic

Answered Question
Oct 21st, 2009
User Badges:

Hi Guys,


Can anyone tell me what happens to the respective traffic if I have the following configuration?


I am a little confused between the action forward/drop and permit/deny meanings?


vlan access-map TEST 10

match ip address TEST-ACL

action forward

!

vlan filter TEST vlan-list 1-100

!

!

ip access-list extended TEST-ACL

permit udp any host 224.0.0.2 eq 1985

deny igmp any any

permit ip any any



Many thx indeed,

Ken

Correct Answer by Jon Marshall about 7 years 7 months ago

Ken


The actions forward and drop are pretty self explanatory.


What your rxample is doing is


1) forwarding HSRP

2) dropping any IGMP traffic

3) forwarding all other traffic


when the traffic matches the deny clause the packets are not subject to the action that you have specified.


Jon

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Jon Marshall Wed, 10/21/2009 - 07:54
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Ken


The actions forward and drop are pretty self explanatory.


What your rxample is doing is


1) forwarding HSRP

2) dropping any IGMP traffic

3) forwarding all other traffic


when the traffic matches the deny clause the packets are not subject to the action that you have specified.


Jon

Actions

This Discussion