Cisco WS-C6506 - Page 508

1488 pages

Save Page as PDF

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

15-112

Catalyst 6500 Series Switch Software Configuration Guide—Release 8.7

OL-8978-04

Chapter 15 Configuring Access Control

Configuring Policy-Based Forwarding

Step 3 Configure one PBF gateway called GATEWAY-TEST.

Console> (enable) set pbf gw GATEWAY-TEST 10.0.0.100 255.255.255.0 11-11-22-22-33-3 3 1

Commit operation successful.

Console> (enable)

The following PBF gateway has been created:

Console> (enable) show pbf gw

Name : GATEWAY-TEST

Map : CLIENT-TEST,

VLAN : 1

Gateways : 1

Adjacency ip mask mac

----------------------------------------------------------------

.g0001GATEWAY-TEST 10.0.0.100 255.255.255.0 11-11-22-22-33-33

Console> (enable)

The set pbf gateway command macro has created the security ACL adjacency for the gateway, but the

macro command (set pbf client GATEWAY-TEST 10.0.0.100 255.255.255.0 11-11-22-22-33-33 1) that

created the security ACL adjacency does not appear in the following configuration:

Console> (enable) show run

<SNIP> Unrelated configuration information cut out

!

#security ACLs

clear security acl all

#pbf set

set pbf mac 00-0d-65-36-1e-eb

#adj set

set security acl adjacency .c0000CLIENT-TEST 10 00-00-11-11-22-22 10.0.0.10

set security acl adjacency .g0001GATEWAY-TEST 1 11-11-22-22-33-33 10.0.0.100 23

#

commit security acl all

!

<SNIP> Unrelated configuration information cut out

Console> (enable)

Step 4 Build the PBF map between the client (CLIENT-TEST) and the gateway (GATEWAY-TEST).

Console> (enable) set pbf-map CLIENT-TEST GATEWAY-TEST

.cCLIENT-TEST editbuffer modified. Use 'commit' command to apply changes.

.cCLIENT-TEST editbuffer modified. Use 'commit' command to apply changes.

.gGATEWAY-TEST editbuffer modified. Use 'commit' command to apply changes.

.cCLIENT-TEST editbuffer modified. Use 'commit' command to apply changes.

.gGATEWAY-TEST editbuffer modified. Use 'commit' command to apply changes.

6509> (enable) ACL commit in progress.

ACL commit in progress.

ACL '.cCLIENT-TEST' successfully committed.

Console> (enable)

ACL '.gGATEWAY-TEST' successfully committed.

Console> (enable) Mapping in progress.

Please configure VLAN 10.

ACL .cCLIENT-TEST successfully mapped to VLAN 10.

Console> (enable) Mapping in progress.

ACL .gGATEWAY-TEST successfully mapped to VLAN 1.

Table of Contents

Related product manuals

Preview: Cisco WS-C6509

Preview: Cisco WS-C2950-24

Cisco WS-C2950-24

Preview: Cisco WS-C2950-12

Cisco WS-C2950-12

Cisco WS-C2940-8TT-S

Preview: Cisco WS-C3750-48PS-S

Cisco WS-C3750-48PS-S

Cisco WS-C2948G-GE-TX

Preview: Cisco WS-C3560-48PS-S

Cisco WS-C3560-48PS-S

Preview: Cisco WS-C2960L-8TS-LL

Cisco WS-C2960L-8TS-LL

Preview: Cisco WS-C3560E-24PD-E

Cisco WS-C3560E-24PD-E

Cisco WS-C3750G-48PS-S

Preview: Cisco WS-C2960L-24TS-LL

Cisco WS-C2960L-24TS-LL

Preview: Cisco Catalyst WS-C3850-24T-L

Cisco Catalyst WS-C3850-24T-L