Allocating Acl Vlan Cam; Applying An Ip Acl - Dell Z9500 Configuration Manual
Z-series core and aggregation switche
Hide thumbs
Also See for Z9500:
- Command reference manual (1905 pages) ,
- Reference manual (1849 pages) ,
- Installation manual (47 pages)
Table of Contents
Advertisement
ip access-group access-list-name out implicit-permit
4
Specify the VLAN members in the ACL VLAN group.
ACL-VLAN-GROUP CONFIGURATION (conf-acl-vl-grp) mode
member vlan vlan-range
5
Verify the currently configured ACL VLAN groups on the switch.
ACL-VLAN-GROUP CONFIGURATION (conf-acl-vl-grp) mode
show acl-vlan-group {group-name | detail}
Dell#show acl-vlan-group detail
Group Name :
TestGroupSeventeenTwenty
Egress IP Acl :
SpecialAccessOnlyExpertsAllowed
Vlan Members :
100,200,300
Group Name :
CustomerNumberIdentificationEleven
Egress IP Acl :
AnyEmployeeCustomerElevenGrantedAccess
Vlan Members :
2-10,99
Group Name :
HostGroup
Egress IP Acl :
Group5
Vlan Members :
1,1000
Dell#
Allocating ACL VLAN CAM
CAM optimization for ACL VLAN groups is not enabled by default. You must allocate blocks of ACL VLAN CAM to enable ACL
CAM optimization by using the cam-acl-vlan command.
By default, 0 blocks of CAM are allocated for VLAN services in the VLAN Content Aware Processor (VCAP), an application that
modifies VLAN settings before forwarding packets on member interfaces. The cam-acl-vlan {vlanaclopt | vlaniscsi
| vlanopenflow} command allows you to allocate filter processor (FP) blocks of memory for ACL VLAN services: iSCSI
counters, Open Flow, and ACL VLAN optimization.
You can configure CAM allocation for only two of these VLAN services at a time. You can allocate from 0 to 2 FP blocks for
each VLAN service.
To allocate the number of FP blocks for ACL VLAN optimization, enter the cam-acl-vlan vlanaclopt <0-2> command.
After you configure ACL VLAN CAM, reboot the switch to enable CAM allocation for ACL VLAN optimization.
To display the number of FP blocks currently allocated to different ACL VLAN services, enter the show cam-acl-vlan
command.
To display the amount of CAM space currently used and available for Layer 2 and Layer 3 ACLs on the switch, enter the show
cam-usage command.
Applying an IP ACL
To apply an IP ACL (standard or extended) to a physical or port channel interface, use the following commands.
1
Enter the interface number.
Access Control Lists (ACLs)
105
Advertisement
Table of Contents
Troubleshooting
