Working with RACL
RACLs administer to cartage baffled by the switch. Although this ability complete like an oxymoron,
today, best switches cannot alone arch traffic, but they can additionally avenue it—oftentimes doing
so at wire speed.
The ACL provided in Example 16-1 is a RACL. You can administer RACLs on about-face virtual
interfaces (SVI), which is an interface central a VLAN configured with an IP address
and acclimated by hosts in the VLAN to avenue the VLAN or on concrete Layer 3 interfaces.
Figure 16-1 represents a RACL implemented amid two SVIs (VLAN 10 and VLAN 20).
SVIs booty the anatomy of interface VLAN x in Cisco IOS terminology. The IP address
configured on the SVI in VLAN x is acclimated as a absence aperture by hosts in VLAN x.
Figure 16-1 RACL Example
Subnet A Subnet B
int vlan10
Switch
access-group 100 in
!
access-list 100 admittance subnet A subnet B