PurposeCommand or Action
switch(config)# vlan filter acl-mac-map vlan-list
1-20,26-30
switch(config)#
Displays the ACL configuration.(Optional) show running-config aclmgr
Example:
Step 3
switch(config)# show running-config aclmgr
Copies the running configuration to the startup
configuration.
(Optional) copy running-config startup-config
Example:
Step 4
switch(config)# copy running-config startup-config
Verifying the VACL Configuration
To display VACL configuration information, perform one of the following tasks:
PurposeCommand
Displays the ACL configuration, including the VACL-related configuration.
This command displays the user-configured ACLs in the running
configuration. The all option displays both the default
(CoPP-configured) and user-configured ACLs in the running
configuration.
Note
show running-config aclmgr
[all]
Displays the ACL startup configuration.
This command displays the user-configured ACLs in the startup
configuration. The all option displays both the default
(CoPP-configured) and user-configured ACLs in the startup
configuration.
Note
show startup-config aclmgr
[all]
Displays information about VACLs that are applied to a VLAN.show vlan filter
Displays information about VLAN access maps.show vlan access-map
Monitoring and Clearing VACL Statistics
To monitor or clear VACL statistics, use one of the commands in this table.
PurposeCommand
Displays the VACL configuration. If the VLAN access-map includes the
statistics per-entry command, the show vlan access-list command output
includes the number of packets that have matched each rule.
show vlan access-list
Clears statistics for VACLs.clear vlan access-list counters
Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.x
301
Configuring VLAN ACLs
Verifying the VACL Configuration
To Next Page
Loading...
