1. Manuals
  2. Brands
  3. Cisco Manuals
  4. Switch
  5. TrustSec
  6. Configuration manual

Cisco TrustSec Configuration Manual page 116

Hide thumbs
Table of Contents

Advertisement

cts role-based
sgt-map ipv4_netaddress/prefix |
ipv6_netaddress/prefix
sgt-map host ipv4_hostaddress |
ipv6_hostaddress
sgt sgt_number
vrf instance_name
Defaults
None
Command Modes
Global configuration (config)
Supported User Roles
Administrator
Command History
Release
12.2 (33) SXI3
12.2 (50) SG7
12.2 (53) SE2
12.2(50) SY
15.0(0) SY
Usage Guidelines
If you do not have a Cisco Identity Services Engine, Cisco Secure ACS, dynamic ARP inspection, DHCP
snooping, or Host Tracking available to your switch to automatically map SGTs to source IP addresses,
you can manually map an SGT to the following with the cts role-based sgt-map command:
Cisco TrustSec Configuration Guide
7-30
Modification
This command was introduced on the Catalyst 6500 series switches.
This command was introduced on the Catalyst 4000 series switches.
This command was introduced on the Catalyst 3750(E), 3560(E), and
3750(X) series switches (without vrf or IPv6 support).
The following keywords were added for the Catalyst 6500 series switches:
The following keywords were added for the Catalyst 6500 series switches:
A single host IPv4 or IPv6 address
All hosts of an IPv4 or IPv6 network or subnetwork
(Optional) Specifies that the SGT will be mapped to all
hosts of the specified subnet address (IPv4 or IPv6). IPv4
is specified in dot decimal CIDR notation, IPv6 in colon
hexadecimal notation. (0-128)
Binds the specified host IP address with the specified
SGT. Enter the IPv4 address in dot decimal notation;
IPv6 in colon hexadecimal notation.
(0–65,535). Specifies the Security Group Tag (SGT)
number.
Specifies a VRF instance, previously created on the
device.
[no] cts role-based enforcement
[no] cts role-based ip flow monitor user-defined-monitor dropped
[no] cts role-based ipv6 flow monitor user-defined-monitor dropped
[no] cts role-based ipv6 copy
[no] cts role-based permissions
[no] cts role-based sgt-map interface
[no] cts role-based sgt-map vlan-list
Chapter 7
Cisco TrustSec Command Summary
OL-22192-01
Show Quick Links

Hide quick links:

Advertisement

Table of Contents
loading

Related Manuals for Cisco TrustSec

Related Products for Cisco TrustSec

Table of Contents