Acl Restrictions; Troubleshooting Acls; Displaying Acl Policies On The Vem - Cisco Nexus 1000V Troubleshooting Manual

Hide thumbs Also See for Nexus 1000V:

Troubleshooting manual (280 pages)

Configuration manual (96 pages)

Deployment manual (49 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

260

261

262

263

264

Table of Contents

ACL Restrictions

S e n d d o c u m e n t c o m m e n t s t o n e x u s 1 k - d o c f e e d b a c k @ c i s c o . c o m .

ACL Restrictions

The following restrictions apply to ACLs:

•

Troubleshooting ACLs

The commands listed in this section can be used on the VSM to see the policies that are configured and

applied on the interfaces.

Use the following command to display configured ACLs:

•

Use following commands on the VSM to see run-time information of the ACLMGR and ACLCOMP

during configuration errors, and to collect ACLMGR process run-time information configuration errors:

•

Use the following commands to collect ACLCOMP process run-time information configuration errors:

•

Displaying ACL Policies on the VEM

The commands listed in this section can be used to display configured ACL policies on the VEM.

Use the following command to list the ACLs installed on that server

~ # module vem 3 execute vemcmd show acl

Acl-id Ref-cnt

Cisco Nexus 1000V Troubleshooting Guide, Release 4.2(1)SV2(2.1)

15-2

You cannot apply more than one IP ACL and one MAC ACL in each direction on an interface.

A MAC ACL applies only to Layer 2 packets.

VLAN ACLs are not supported.

IP fragments are not supported n ACL rules.

Non initial fragments are not subject to ACL lookup.

The established option to specify TCP flags is not supported.

You cannot have two not-equal-to (neq) operators in the same rule.

ACL is not supported in port channels.

show access-list summary

show system internal aclmgr event-history errors

show system internal aclmgr event-history msgs

show system internal aclmgr ppf

show system internal aclmgr mem-stats (to debug memory usage and leaks)

show system internal aclmgr status

show system internal aclmgr dictionary

show system internal aclcomp event-history errors

show system internal aclcomp event-history msgs

show system internal aclcomp pdl detailed

show system internal aclcomp mem-stats (to debug memory usage and leaks)

Type Numrules

IPv4

Stats

disabled

Chapter 15

ACLs

OL-28795-01

Table of Contents

Acl Restrictions; Troubleshooting Acls; Displaying Acl Policies On The Vem - Cisco Nexus 1000V Troubleshooting Manual

ACL Restrictions

Troubleshooting ACLs

Displaying ACL Policies on the VEM

Troubleshooting

Related Manuals for Cisco Nexus 1000V

Related Content for Cisco Nexus 1000V

Table of Contents