Configuring VACLs
Applying a VLAN Access Map
To apply a VLAN access map, perform this task:
Command
Router(config)# vlan filter map_name {vlan-list
vlan_list | interface type
1. type = pos, atm, or serial
2. number = slot/port or slot/port_adapter/port; can include a subinterface or channel group descriptor
When applying a VLAN access map, note the following information:
•
•
•
•
•
•
•
•
See the
Verifying VLAN Access Map Configuration
To verify VLAN access map configuration, perform this task:
Command
Router# show vlan access-map [ map_name ]
Router# show vlan filter [access-map map_name | vlan
vlan_id | interface type
1. type = pos, atm, or serial
2. number = slot/port or slot/port_adapter/port; can include a subinterface or channel group descriptor
Cisco 7600 Series Router Cisco IOS Software Configuration Guide, Release 12.2SX
35-8
1
2
number
}
You can apply the VLAN access map to one or more VLANs or WAN interfaces.
The vlan_list parameter can be a single VLAN ID or a comma-separated list of VLAN IDs or VLAN
ID ranges (vlan_ID–vlan_ID).
If you delete a WAN interface that has a VACL applied, the VACL configuration on the interface is
also removed.
You can apply only one VLAN access map to each VLAN or WAN interface.
VACLs applied to VLANs are active only for VLANs with a Layer 3 VLAN interface configured.
Applying a VLAN access map to a VLAN without a Layer 3 VLAN interface creates an
administratively down Layer 3 VLAN interface to support the VLAN access map.
VACLs applied to VLANs are inactive if the Layer 2 VLAN does not exist or is not operational.
You cannot apply a VACL to a secondary private VLAN. VACLs applied to primary private VLANs
also apply to secondary private VLANs.
Use the no keyword to clear VLAN access maps from VLANs or WAN interfaces.
"VLAN Access Map Configuration and Verification Examples" section on page
1
2
number
]
Purpose
Applies the VLAN access map to the specified VLANs or
WAN interfaces.
Purpose
Verifies VLAN access map configuration by displaying the
content of a VLAN access map.
Verifies VLAN access map configuration by displaying the
mappings between VACLs and VLANs.
Chapter 35
Configuring VLAN ACLs
35-9.
OL-4266-08