IPv4 access-group (VACL)

Allows for the configuration of an IPv4 ACL on a vlan to be shared. VACLs are applied from vlan context.

Syntax


ip access-group <ACL-ID> in|out|vlan-in|vlan-out|connection-rate-filter shared
no ip access-group <ACL-ID> in|out|vlan-in|vlan-out|connection-rate-filter shared
    

Description

Apply the specified IPv4 ACL on this VLAN interface. When ACLs are shared, hardware resource usage is optimized where possible.

Parameter

shared

Apply the IPv4 ACL so as to share hardware resources.

Restrictions

Per application statistics will not be available when ACLs are applied as shared.

ip access-group my-acl out shared

switch(config)# vlan 1
switch(vlan-1)# ip access-group my-acl vlan-out shared
switch(vlan-1)# ip access-group my-acl out shared