Administrator Guide

ManualsBrandsDell ManualsComputer equipmentForce10 Z9000

321

322

323

324

325

326

327

328

329

330

Dell#show running-config acl-vlan-group group1

acl-vlan-group group1

description Acl Vlan Group1

member vlan 1-10,400-410,500

ip access-group acl1 out implicit-permit

Dell#

acl-vlan-group

Create an ACL VLAN group.

Syntax

acl-vlan-group {group name}

To remove an ACL VLAN group, use the no acl-vlan-group {group name}

command.

Parameters

group-name Specify the name of the ACL VLAN group. The name can

contain a maximum 140 characters.

Default No default behavior or values

Command

Modes

CONFIGURATION

Command

History

Version 9.3(0.0) Introduced on the S4810, S4820T and Z9000 platforms

Usage

Information

You can have up to eight different ACL VLAN groups at any given time. When you

configure an ACL VLAN group, you enter the ACL VLAN Group Configuration

mode.

To avoid the problem of excessive consumption of CAM area, you can configure

ACL VLAN groups that combines all the VLANs that are applied with the same ACL

in a single group. A unique identifier for each of ACL attached to the VLAN is used

as a handle or locator in the CAM area instead of the VLAN id. This method of

processing signficiantly reduces the number of entries in the CAM area and saves

memory space in CAM.

You can create an ACL VLAN group and attach the ACL with the VLAN members.

Optimization is applicable only when you create an ACL VLAN group. If you apply

an ACL separately on the VLAN interface, each ACL maps with the VLAN and

increased CAM space utilization occurs.

Attaching an ACL individually to VLAN interfaces is similar to the behavior of ACL-

VLAN mapping storage in CAM prior to the implementation of the ACL VLAN group

functionality.

328

Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM)