CHAPTER
54-1
Software Configuration Guide—Release IOS XE 3.6.0E and IOS 15.2(2)E
OL_28731-01
54
Configuring Network Security with ACLs
This chapter describes how to use access control lists (ACLs) to configure network security on the
Catalyst 4500 series switches.
Note The Catalyst 4500 series switch supports time-based ACLs.
This chapter consists of the following major sections:
• About ACLs, page 54-2
• Hardware and Software ACL Support, page 54-6
• Troubleshooting High CPU Due to ACLs, page 54-6
• TCAM Programming and ACLs, page 54-10
• Layer 4 Operators in ACLs, page 54-10
• Configuring Unicast MAC Address Filtering, page 54-14
• Configuring Named MAC Extended ACLs, page 54-14
• Configuring EtherType Matching, page 54-15
• Configuring Named IPv6 ACLs, page 54-16
• Applying IPv6 ACLs to Layer 2 and 3 Interface, page 54-17
• Configuring VLAN Maps, page 54-18
• Displaying VLAN Access Map Information, page 54-25
• Using VLAN Maps with Router ACLs, page 54-26
• Configuring PACLs, page 54-28
• Using PACL with VLAN Maps and Router ACLs, page 54-33
• Configuring RA Guard, page 54-36
Note For complete syntax and usage information for the switch commands used in this chapter, see the Cisco
Catalyst 4500 Series Switch Command Reference and related publications at this location:
http://www.cisco.com/en/US/products/hw/switches/ps4324/index.html
If a command is not in the Catalyst 4500 Series Switch Command Reference, you can locate it in the
To Next Page
Loading...
