Contents
xviii
Software Configuration Guide—Release 12.2(25)SG
OL-7659-03
Performing Validation Checks 32-18
CHAPTER
33 Configuring Network Security with ACLs 33-1
Understanding ACLs 33-1
ACL Overview 33-2
Supported Features That Use ACLs 33-2
Router ACLs 33-3
Port ACLs 33-4
VLAN Maps 33-5
Hardware and Software ACL Support 33-5
TCAM Programming and ACLs 33 -6
Layer 4 Operators in ACLs 33-7
Restrictions for Layer 4 Operations 33-8
Configuration Guidelines for Layer 4 Operations 33-8
How ACL Processing Impacts CPU 33-9
Configuring Unicast MAC Address Filtering 33-11
Configuring Named MAC Extended ACLs 33-11
Configuring VLAN Maps 33-12
VLAN Map Configuration Guidelines 33-13
Creating and Deleting VLAN Maps 33-13
Applying a VLAN Map to a VLAN 33-16
Using VLAN Maps in Your Network 33-16
Displaying VLAN Access Map Information 33-19
Using VLAN Maps with Router ACLs 33-19
Guidelines for Using Router ACLs and VLAN Maps 33-20
Examples of Router ACLs and VLAN Maps Ap plied to VLANs 33-20
Configuring PACLs 33-22
Creating a PACL 33-22
PACL Configuration Guidelines 33-23
Configuring IP and MAC ACLs on a Layer 2 Interface 33-23
Using PACL with Access-Group Mode 33-24
Configuring Access-group Mode on Layer 2 Interface 33-24
Applying ACLs to a Layer 2 Interface 33-25
Displaying an ACL Configuration on a Laye r 2 Interface 33-25
Using PACL with VLAN Maps and Router ACLs 33-26
CHAPTER
34 Configuring Private VLANs 34-1
Overview of PVLANs 34-1