Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
264
Views
0
Helpful
1
Replies

VACL functioning

bapatsubodh
Level 1
Level 1

‎06-08-2009 08:46 AM - edited ‎03-06-2019 06:08 AM

Hi,

When we apply VACL to a VLAN by

vlan filter trial vlan-list 10 command,

and lets assume fa1/10 to fa1/15 are members of VLAN - 10. There is an accss-list defined in access-class. Does this access list logically gets applied to all member ports of this VLAN. That means traffic entering these ports and traffic exiting these ports will be inspectd by the access-class and corresponding access-list and action will be taken - Froward or drop. Or the traffic entering the switch originated by hosts is inspected and then dropped or forwarded? Is it direction based ?

What happends to traffic destined for other VLAN hosts generated by the hosts in the VLAN 10?

Please share the experience.

any link on cisco.com?

Thanks in advance

Subodh

Labels:
0 Helpful
1 Reply 1

Giuseppe Larosa
Hall of Fame
Hall of Fame

‎06-09-2009 04:44 AM

Hello Subodh,

you may read the vlan map section here

http://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/release/12.2_46_se/configuration/guide/swacl.html#wp1649190

VACL have no direction and they are the only way to apply a filter within a L2 broadcast domain.

You can give a direction by calling an ip ACL.

Hope to help

Giuseppe

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card