Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
262
Views
0
Helpful
1
Replies

Reflexive ACLs on SVIs

jason.henderson
Level 1
Level 1

‎09-18-2008 01:18 AM - edited ‎03-06-2019 01:27 AM

I can configure a RACL on a physical interface, but it doesn't work on an SVI. Can anyone explain why it doesn't work?

Labels:
0 Helpful
1 Reply 1

Giuseppe Larosa
Hall of Fame
Hall of Fame

‎09-18-2008 04:24 AM

Hello Jason,

I suppose you are using an ISR router with an etherswitch module.

the reflexive ACL is a "router" security feature and so it can be applied to a "router" interface.

Besides this, an SVI can receive traffic from L2 ports associated with the broadcast domain and from other L3 devices so it is a less clear context.

Hope to help

Giuseppe

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card