Applying An Ip-Acl To Mgmt0 - Cisco AP775A - Nexus Converged Network Switch 5010 Configuration Manual

Chapter 42 Configuring IPv4 and IPv6 Access Control Lists
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m

Applying an IP-ACL to mgmt0

A system default ACL called mgmt0 exists on the mgmt0 interface. This ACL is not visible to the user,
so mgmt0 is a reserved ACL name that cannot be used. The mgmt0 ACL blocks most ports and only
allows access to required ports in line with accepted security policies.
To apply an IP-ACL to an interface using Fabric Manager, follow these steps:
Expand Switches > Security and then select IP ACL in the Physical Attributes pane.
Step 1
You see the IP-ACL configuration in the Information pane.
Click the Interfaces tab.
Step 2
You see a list of interfaces and associated IP-ACLs.
Click Create Row.
Step 3
You see the Create Interfaces dialog box shown in
Figure 42-7
(Optional) remove the switches you do not want to include in the IP-ACL by unchecking the check boxes
Step 4
next to the switch addresses.
Set the interface you want associated with an IPv4-ACL or IPv6-ACL in the Interface field.
Choose a ProfileDirection (either inbound or outbound).
Step 5
Enter the IP-ACL name in the Profile Name field.
Step 6
Note
Click Create to associate the IP-ACL.
Step 7
You see the newly associated access list in the list of IP-ACLs.
OL-17256-03, Cisco MDS NX-OS Release 4.x
Create Interfaces Dialog Box
This IP-ACL name must have already been created using the Create Profiles dialog box. If not,
no filters will be enabled until you to go to the Create Profiles dialog box and create the profile.
Figure 42-7.
Cisco MDS 9000 Family Fabric Manager Configuration Guide
Applying an IP-ACL to mgmt0
42-11