Download Print this page

Configuration Example For Catena-Transparent Mode Pacl - Cisco Nexus 7000 Series Configuration Manual

The catena solution

Hide thumbs Also See for Nexus 7000 Series:

Command reference manual (1018 pages)

,

Reference manual (746 pages)

,

Configuration manual (536 pages)

Table Of Contents

Table of Contents

Advertisement

Configuring the Catena Solution

interface Eth1/2

catena port-group pg2

interface Eth1/4

catena ins_redirect

chain 10

10 access-list acl1 vlan-group vg1 egress-port-group pg1 mode forward

20 access-list acl1 vlan-group vg2 egress-port-group pg2 mode forward

no shutdown

catena ins_bypass

chain 10

10 access-list acl2 vlan-group vg1 egress-port-group pg1 mode bypass

no shutdown

catena ins_drop

chain 10

10 access-list acl3 vlan-group vg1 egress-port-group pg1 mode forward

20 access-list acl3 vlan-group vg2 egress-port-group pg2 mode drop

no shutdown

Configuration Example for Catena—Transparent Mode PACL

This example shows how to configure Catena in transparent mode:

switch# configure terminal

switch(config)# feature catena

switch(config)# catena port-group pg1

switch(config-port-group)# interface Eth 1/1

switch(config-pg-node)# catena port-group pg2

switch(config-port-group)# interface Eth 1/2

switch(config-pg-node)# catena port-group pg3

switch(config-port-group)# interface Eth 1/3

switch(config-pg-node)# catena port-group pg4

switch(config-port-group)# interface Eth 1/4

switch(config-pg-node)# catena port-acl acl1

switch(config-port-acl)# 10 permit ip 192.0.2.1/24 any

switch(config-port-acl)# 20 deny ip 198.51.100.1/24 any

switch(config-port-acl)# catena ins_1

switch(config-catena-instance)# chain 10

switch(config-catena)# 10 access-list acl1 ingress-port-group pg1 egress port-group pg2

mode forward

switch(config-catena)# 20 access-list acl1 ingress-port-group pg3 egress port-group pg4

mode forward

switch(config-catena)# no shutdown

switch# show running-config catena

feature catena

catena port-acl acl1

10 permit ip 192.0.2.1/24 any

20 deny ip 198.51.100.1/24 any

catena port-group pg1

interface Eth1/1

catena port-group pg2

interface Eth1/2

catena port-group pg3

interface Eth1/3

catena port-group pg4

interface Eth1/4

catena ins1

chain 10

10 access-list acl1 ingress-port-group pg1 egress-port-group pg2 mode forward

Configuration Example for Catena—Transparent Mode PACL

Cisco Nexus 7000 Series Switches Configuration Guide: The Catena Solution

15

Table of Contents

Show Quick Links

Quick Links:
Configuring a Port Acl

Hide quick links:

Advertisement

Table of Contents