PurposeCommand or Action
Displays the ACL configuration.(Optional) show running-config aclmgr
Example:
Step 4
switch(config-if)# show running-config aclmgr
Copies the running configuration to the startup
configuration.
(Optional) copy running-config startup-config
Example:
Step 5
switch(config-if)# copy running-config
startup-config
Related Topics
Creating an IP ACL, on page 233
Enabling or Disabling MAC Packet Classification, on page 291
Applying an IP ACL as a VACL
You can apply an IP ACL as a VACL.
Related Topics
Configuring VACLs, on page 298
Configuring IPv4 ACL Logging
To configure the IPv4 ACL logging process, you first create the access list, then enable filtering of IPv4 traffic
on an interface using the specified ACL, and finally configure the ACL logging process parameters.
SUMMARY STEPS
1. configure terminal
2. ip access-list name
3. {permit | deny} ip source-address destination-address log
4. exit
5. interface ethernet slot/port
6. ip access-group name in
7. exit
8. logging ip access-list cache interval interval
9. logging ip access-list cache entries number-of-flows
10. logging ip access-list cache threshold threshold
11. logging ip access-list detailed
12. hardware rate-limiter access-list-log packets
13. acllog match-log-level severity-level
14. (Optional) show logging ip access-list cache [detail]
Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.x
262
Configuring IP ACLs
Applying an IP ACL as a VACL
To Next Page
Loading...
