Configuring VACL
Perform the afterward accomplish to configure and administer a VACL (VLAN admission map) on the switch:
1. Ascertain the accepted or continued admission account to be acclimated in VACL.
2. Ascertain a VLAN admission map.
3. Configure a bout article in a VLAN admission map sequence.
4. Configure an activity article in a VLAN admission map sequence.
5. Administer the VLAN admission map to the defined VLANs.
6. Display VLAN admission map information.
Example 4-6 shows how to ascertain and administer a VACL to bead packets analogous admission account 1 from network
192.168.1.0/24; all added packets analogous admission account 2 are forwarded. The VACL is activated to VLANs 5 through
10.
Example 4-6. VACL Configuration Example
Code View:
Switch(config)#access-list 1 admittance 192.168.1.0 0.0.0.255
Switch(config)#access-list 2 admittance any
Switch(config)#vlan access-map mymap 10
Switch(config-access-map)#match ip abode 1
Switch(config-access-map)#action drop
Switch(config-access-map)#exit
Switch(config)#vlan access-map mymap 20
Switch(config-access-map)#match ip abode 2
Switch(config-access-map)#action forward
Switch(config-access-map)#exit
Switch(config)# vlan clarify mymap vlan-list 5-10
Switch(config-access-map)#end
Switch# appearance vlan access-map
Vlan access-map "mymap" 10
Match clauses:
ip address: 1
Action:
drop
Vlan access-map "mymap" 20
Match clauses:
ip address: 2
Action:
Forward
Switch# appearance vlan filter
VLAN Map mymap is clarification VLANs:
5-10