Service Manual
Examples The following sample output shows the line-by-line style display when using the show running-config
acl-vlan-group option. Note that no group or access list names are truncated
Dell#show running-config acl-vlan-group
!
acl-vlan-group Test
member vlan 1-100
ip access-group test in
Dell#show running-config acl-vlan-group Test
!
acl-vlan-group Test
member vlan 1-100
ip access-group test in
acl-vlan-group
Create an ACL VLAN group.
Syntax
acl-vlan-group {group name}
To remove an ACL VLAN group, use the no acl-vlan-group {group name} command.
Parameters
group-name Specify the name of the ACL VLAN group. The name can contain a maximum 140
characters.
Default No default behavior or values
Command Modes CONFIGURATION
Command History
Version 9.3(0.0) Introduced on the S4810, S4820T and Z9000 platforms
Usage Information You can have up to eight dierent ACL VLAN groups at any given time. When you congure an ACL VLAN
group, you enter the ACL VLAN Group Conguration mode.
To avoid the problem of excessive consumption of CAM area, you can congure ACL VLAN groups that
combines all the VLANs that are applied with the same ACL in a single group. A unique identier for each of
ACL attached to the VLAN is used as a handle or locator in the CAM area instead of the VLAN id. This
method of processing signciantly reduces the number of entries in the CAM area and saves memory space
in CAM.
You can create an ACL VLAN group and attach the ACL with the VLAN members. Optimization is applicable
only when you create an ACL VLAN group. If you apply an ACL separately on the VLAN interface, each ACL
maps with the VLAN and increased CAM space utilization occurs.
Attaching an ACL individually to VLAN interfaces is similar to the behavior of ACL-VLAN mapping storage in
CAM prior to the implementation of the ACL VLAN group functionality.
318
Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM)