Need help to create a VACL on a ME-3750

Answered Question
Aug 12th, 2010

Hi,

I am not quite familiar with the concept of VLAN access-list. From what I cound understand, typical VACL configuration is like this:

vlan access-map Filter-VL7 10
action forward
match mac address AllowThose
!
vlan access-map Filter-VL7 20
action forward
match ip address 101
!
vlan access-map Filter-VL7 30
action drop

It seems that you define the VACL by accepting some traffic based on ACL and then you drop packets that are not match.

I would like to know if it is possible to restrain traffic like ICMP, and telnet to a specific IP address and allowing all other IP traffic that is not going to that specific address. Any example on how this could be done, if feasible, would be greatly appreciated.

Thanks

I have this problem too.
0 votes
Correct Answer by Reza Sharifi about 6 years 5 months ago

Hi Stephane,

Have a look at this blog.  It has some examples too.

http://blog.ine.com/2009/08/10/vlan-access-control-lists-vacls-tiers-1/

HTH

Reza

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
Loading.

Actions

This Discussion