IPv4 access-group (VACL)

Allows for the configuration of an IPv4 ACL on a vlan to be shared. VACLs are applied from vlan context.

Syntax


ip access-group ACL-ID in|out|vlan-in|vlan-out|connection-rate-filter shared
no ip access-group ACL-ID in|out|vlan-in|vlan-out|connection-rate-filter shared

Description

Apply the specified IPv4 ACL on this VLAN interface. When ACLs are shared, hardware resource usage is optimized where possible.

Parameter

shared

Apply the IPv4 ACL so as to share hardware resources.

Restrictions

  • Per-application statistics will not be available when ACLs are applied as shared.

ip access-group my-acl out shared

switch(config)# vlan 1
switch(vlan-1)# ip access-group my-acl vlan-out shared
switch(vlan-1)# ip access-group my-acl out shared