Procedure
PurposeCommand or Action
Enters global configuration mode.switch# configure terminal
Step 1
Specifies the mgmt0 interface.switch(config)# interface mgmt0
Step 2
Enables ACL logging on ingress traffic for the
specified interface.
switch(config-if)# ip access-group name
in
Step 3
(Optional)
Saves the change persistently through reboots and
restarts by copying the running configuration to the
startup configuration.
switch(config-if)# copy running-config
startup-config
Step 4
The following example shows how to apply the mgmt0 interface with the logging specified in acl1 for all
ingress traffic:
switch# configure terminal
switch(config)# interface mgmt0
switch(config-if)# ip access-group acl1 in
switch(config-if)# copy running-config startup-config
Configuring VLAN Access Map with Logging
Procedure
PurposeCommand or Action
Enters global configuration mode.switch# configure terminal
Step 1
Enters access map configuration mode for the
access map specified.
switch(config)# vlan access-map
map-name
Step 2
Specifies an IPv4 and IPv6 ACL for the map.switch(config-access-map)# match ip
address ip-access-list
Step 3
Specifies the action that the switch applies to
traffic that matches the ACL.
switch(config-access-map)# action drop
log
Step 4
Exits access map configuration mode.switch(config-access-map)# exit
Step 5
This example shows how to create a VLAN access map for logging.
switch# configure terminal
switch(config)# vlan access-map vacl1
switch(config-access-map)# match ip address pacl1
switch(config-access-map)# action drop log
switch(config-access-map)# exit
switch(config)#
Cisco Nexus 5600 Series NX-OS System Management Configuration Guide, Release 7.x
OL-31641-01 111
Configuring System Message Logging
Configuring VLAN Access Map with Logging
To Next Page
Loading...
