Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Attention: The Community will be in read-only mode on 12/14/2017 from 12:00 am pacific to 11:30 am.

During this time you will only be able to see content. Other interactions such as posting, replying to questions, or marking content as helpful will be disabled for few hours.

We apologize for the inconvenience while we perform important updates to the Community.

New Member

ACL IOS to CATOS ?

Hi,

I would put a ACL on a 6500 (WS-C6509 Software, Version NmpSW: 7.4(3)) on Catos.

On IOS here the ACL :

access-list 23

access-list 23 deny host xxx.xxx.xxx.xxx

access-list 23 permit any

int gigax/x

ip access-group 23 out

But on Catos I don't understand if it's possible ? How to translate this ios ACL to catos ?

Thank your for your help.

Regards.

David

2 REPLIES
Cisco Employee

Re: ACL IOS to CATOS ?

Hi David,

From my memories, it should be something like,

set security acl ip TEST

deny ip x.x.x.x 255.255.255.255 any

permit ip any any

Now do,

show security acl info TEST editbuffer

see the ACL which you have configured,

then,

commit security acl all

It is needed to be tied to a vlan VACL, then it should be something like,

set security acl map TEST

if you dont run a hybrid(MSFC/CATOS-L2) you can only use VACL which i believe you are...

Its been very longtime, so i havent tested the above config. moreover i dont have one CATOS box with me to test this

Thanks,

Richard.

*Rate if its useful

Purple

Re: ACL IOS to CATOS ?

  It wouldn't be any different for a hybrid IOs/cat box because you need a msfc card (L3) to do the routing so the commands would be exactly the same . 

211
Views
0
Helpful
2
Replies
CreatePlease to create content