Table of Contents
Advertisement
Chapter 15
Configuring Access Control
2.
3.
Figure 15-3
Host A
(VLAN 10)
Host C
(VLAN 10)
Using Cisco IOS ACLs in your Network
Configuring Cisco IOS ACLs on the Catalyst 6500 series switch routed-VLAN interfaces is the same as
Note
configuring the ACLs on the other Cisco routers. To configure the Cisco IOS ACLs, see the
"Unsupported Features" section on page 15-44
page
To configure the ACLs for IP, refer to the "Configuring IP Services" chapter in the Network Protocols
Configuration Guide, Part 1.
When a feature is configured on the router to process traffic (such as NAT), the Cisco IOS ACL that is
associated with the feature determines the specific traffic that is bridged to the router instead of being
switched in Layer 3. The router then applies the feature and routes the packet normally. Some exceptions
to this process are described in the
section on page
OL-8978-04
Packets after multicast expansion:
Output Cisco IOS ACL
a.
VACL for output VLAN
b.
Packets originating from the router:
VACL for output VLAN
a.
Applying ACLs on Multicast Packets
Catalyst 6500 Series Switch
Routed
Input IOS ACL
Bridged
VACL
15-45. In addition, refer to the Cisco IOS configuration guides and command reference publication.
15-10.
IOS ACL for
output VLAN
for packets
with MSFC
originating from
router
MSFC
Output IOS ACL
VACL (Not supported
on PFC2)
Bridged
and the
"VACL Configuration Guidelines" section on
"Hardware and Software Handling of Cisco IOS ACLs with PFC"
Catalyst 6500 Series Switch Software Configuration Guide—Release 8.7
Using Cisco IOS ACLs in your Network
Host B
(VLAN 20)
Host D
(VLAN 20)
15-9
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
