Before You Begin
Be sure that the ACL that you want to apply exists and is configured to filter traffic for this application.
Procedure
PurposeCommand or Action
Enters global configuration mode.switch# configure terminal
Step 1
Enters line configuration mode.switch(config)# line vty
Example:
switch(config)# line vty
switch(config-line)#
Step 2
Specifies inbound or outbound access
restrictions.
switch(config-line)# access-class access-list-number
{in | out}
Example:
switch(config-line)# access-class ozi2 in
switch(config-line)#access-class ozi3 out
switch(config)#
Step 3
(Optional)
Removes inbound or outbound access
restrictions.
switch(config-line)# no access-class
access-list-number {in | out}
Example:
switch(config-line)# no access-class ozi2 in
switch(config-line)# no access-class ozi3 out
switch(config)#
Step 4
Exits line configuration mode.switch(config-line)# exit
Example:
switch(config-line)# exit
switch#
Step 5
(Optional)
Displays the running configuration of
the ACLs on the switch.
switch# show running-config aclmgr
Example:
switch# show running-config aclmgr
Step 6
(Optional)
Copies the running configuration to the
startup configuration.
switch# copy running-config startup-config
Example:
switch# copy running-config startup-config
Step 7
The following example shows how to apply the access-class ozi2 command to the in-direction of the vty line.
switch# configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
switch(config)# line vty
switch(config-line)# access-class ozi2 in
switch(config-line)# exit
switch#
Cisco Nexus 3600 NX-OS Security Configuration Guide, Release 7.x
98
Configuring IP ACLs
Configuring ACLs on Virtual Terminal Lines
To Next Page
Loading...
