Manualshelf

Technical data

ManualsBrandsMB QUART ManualsAmplifierMLX-100
31323334353637383940
Brocade MLX Series and NetIron Family Documentation Updates 27
53-1002805-03
Deletion of ACLs bound to an interface
1
Deletion of ACLs bound to an interface
To delete an ACL bound to an interface, use the force-delete-bound-acl command. The no form of
force-delete-bound-acl command does not allow the deletion of a bound ACL. Initially
force-delete-bound-acl is disabled.
Brocade(config)#acl-policy
The force-delete-bound-acl command allows the ACLs bound to an interface to be deleted.
Brocade(config-acl-policy)# force-delete-bound-acl
The no force-delete-bound-acl command does not allow the ACLs bound to an interface to be
deleted.
Brocade(config-acl-policy)# no force-delete-bound-acl
Syntax: [no] force-delete-bound-acl
When force-delete-bound-acl is enabled, it allows deletion of ACLs bound to one or more interfaces.
After enabling this command for the deletion of the ACLs, however the binding of the ACL to an
interface still remains. On rebinding this will be an empty ACL and will have no affect on traffic
forwarding. On rebinding the CAM entries are reprogrammed appropriately, so no ACL filtering takes
place after the ACL is deleted. This command is available as a sub-command of acl-policy
command. However like any other ACL modification the CAM is only reprogrammed during rebind.
Without a rebind the old filters are still present in the CAM.
NOTE
When this command is enabled, an ACL can be deleted even if it is bound to one or more interfaces.
However, the interface binding to the ACL remains. This will be an empty ACL and will have no affect
on traffic forwarding. In case of subnet broadcast ACL bindings, when an empty ACL is bound to an
interface, implicit deny entries are programmed to the CAM and will have effect on traffic forwarding.
An example of the command is as below.
Brocade(config-acl-policy)# force-delete-bound-acl
Brocade(config-acl-policy)# exit
Brocade(config)# show access-list all
ACL configuration:
!
mac access-list SampleACL
permit any any 10 etype any
!
Brocade(config)# show access-list bindings
L4 configuration:
!
TABLE 9 Supported platforms
Features
supported
Brocade
NetIron XMR
Series
Brocade
MLX Series
Brocade
NetIron CES
2000 Series
BASE
package
Brocade
NetIron CES
2000 Series
ME_PREM
package
Brocade
NetIron CES
2000 Series
L3_PREM
package
Brocade
NetIron CER
2000 Series
BASE
package
Brocade
NetIron CER
2000 Series
Advanced
Services
package
Deletion of
ACLs bound
to an
interface
Yes Yes No No No No No