Cisco Nexus 5000 Series Switch CLI Software Configuration Guide, NX-OS 4.0(1a)N1 (OL-16597-01, January 2009)

ManualsBrandsHP ManualsStorageCisco MDS 9513 with Supervisor 2 Director Switch

291

292

293

294

295

296

297

298

299

300

Send feedback to nx5000-docfeedback@cisco.com

20-7

Cisco Nexus 5000 Series Switch CLI Software Configuration Guide

OL-16597-01

Chapter 20 Configuring ACLs

Configuring IP ACLs

To remove an IP ACL from the switch, perform this task:

Changing Sequence Numbers in an IP ACL

You can change all the sequence numbers assigned to the rules in an IP ACL. To change sequence

numbers, perform this task:

Applying an IP ACL as a Port ACL

You can apply an IPv4 ACL to a physical Ethernet interface or a port channel. ACLs applied to these

interface types are considered port ACLs. To apply an IP ACL, perform this task:

Command Purpose

Step 1

switch# configure terminal

Enters configuration mode.

Step 2

switch(config)# no ip access-list name

Removes the IP ACL that you specified by name

from the running configuration.

Step 3

switch(config)# show running-config

(Optional) Displays ACL configuration. The

removed IP ACL should not appear.

Step 4

switch(config)# copy running-config

startup-config

(Optional) Copies the running configuration to the

startup configuration.

Command Purpose

Step 1

switch# configure terminal

Enters configuration mode.

Step 2

switch(config)# resequence ip access-list

name starting-sequence-number increment

Assigns sequence numbers to the rules contained in

the ACL, where the first rule receives the starting

sequence number that you specify. Each subsequent

rule receives a number larger than the preceding

rule. The difference in numbers is determined by

the increment that you specify. The

starting-sequence-number argument and the

increment argument can be a whole number

between 1 and 4294967295.

Step 3

switch(config)# show ip access-lists name

(Optional) Displays the IP ACL configuration.

Step 4

switch(config)# copy running-config

startup-config

(Optional) Copies the running configuration to the

startup configuration.

Command Purpose

Step 1

switch# configure terminal

Enters configuration mode.

Step 2

switch(config)# interface ethernet

slot/port

Enters interface configuration mode for the

specified interface.

switch(config)# interface port-channel

channel-number

Enters interface configuration mode for a port

channel.