Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

command "service-policy input policy-name permit-any" will not work

Hi all,

have a SG500 with latest Firmware, but this command will not work.

service-policy input QoS_01 permit-any

i get this error message:

% Wrong number of parameters or invalid range, size or characters entered

without the option "permit-any or deny-any" the command is successfully.

What is the reason?

It is important, directly to specify this options. Otherwise to lose the access to the switch.

Regards

Stefan

2 REPLIES
Green

command "service-policy input policy-name permit-any" will not w

Hi Stefan, there is an implicit deny all on the end of every access list. The switch only functions in 1-direction (input) for the acl.

You need to write your deny or permit within the acl body.

example

config t

ip access-list extended test

permit ip any any

int fax/x/x

service-input acl test

It sounds like to me you're applying an ACL to an interface without writing a parameter there at all which in turns makes the implicit deny all break whatever you're doing.

-Tom
Please mark answered for helpful posts

-Tom Please mark answered for helpful posts http://blogs.cisco.com/smallbusiness/
New Member

Re: command "service-policy input policy-name permit-any" will n

Hi Tom,

i have a ACL / ACE and create a QoS "policy table" put the "policy class map" (with class mappings) in it.

And now i will bind this QoS policy to a Ethernet port.

cli tutorial example say:

Use the service-policy Interface Configuration (Ethernet, Port-channel) mode command to bind a policy map to a port/port-channel. Use the no form of this command to detach a policy map from an interface.

This command is only available in QoS advanced mode.

Syntax
service-policy input policy-map-name default-action [permit-any | deny-any]

no service-policy input

Example:

  1. witchxxxxxx(config-if)# service-policy input policy1 permit-any

A cisco support open a ticket for me.

-Stefan

613
Views
0
Helpful
2
Replies
CreatePlease login to create content