4. (Optional) show running-config aclmgr
5. (Optional) copy running-config startup-config
DETAILED STEPS
PurposeCommand or Action
Enters global configuration mode.configure terminal
Example:
Step 1
switch# configure terminal
switch(config)#
Enters configuration mode for the interface type that you
specified.
Enter one of the following commands:
Step 2
• interface ethernet slot/port[. number]
• interface port-channel channel-number
• interface vlan vlan-id
• interface mgmt port
Example:
switch(config)# interface ethernet 2/3
switch(config-if)#
Applies an IPv4 or IPv6 ACL to the Layer 3 interface for
traffic flowing in the direction specified. You can apply one
router ACL per direction.
Enter one of the following commands:
Step 3
• ip access-group access-list {in | out}
• ipv6 traffic-filter access-list {in | out}
Example:
switch(config-if)# ip access-group acl1 in
Displays the ACL configuration.(Optional) show running-config aclmgr
Example:
Step 4
switch(config-if)# show running-config aclmgr
Copies the running configuration to the startup
configuration.
(Optional) copy running-config startup-config
Example:
Step 5
switch(config-if)# copy running-config
startup-config
Related Topics
Creating an IP ACL, on page 233
Applying an IP ACL as a Port ACL
You can apply an IPv4 or IPv6 ACL to a Layer 2 interface, which can be a physical port or a port channel.
ACLs applied to these interface types are considered port ACLs.
Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.x
260
Configuring IP ACLs
Applying an IP ACL as a Port ACL
To Next Page
Loading...
