Apply ACL to ISL port

  • 0
  • 1
  • Question
  • Updated 3 weeks ago
I want to apply ACL to VDX ISL port.
However, the following error message occurs when applying:

Bottom_SW1(conf-if-fo-1/0/49)# ip access-group Test_ACL out
%% Error: Edgeport configurations are not allowed on ISL ports.
Shutdown interface to apply such configurations.

The interface can be applied by shutdown. (and no shutdown)
Does access-group work in this case?

Thanks,
KYUNGCHAN.

Photo of kyungchan tae

kyungchan tae

  • 130 Points 100 badge 2x thumb

Posted 4 weeks ago

  • 0
  • 1
Photo of Jason Howlett

Jason Howlett, Employee

  • 102 Points 100 badge 2x thumb
ACL's  should be applied on edge ports not on ISL ports

Photo of Yulia Abitbul

Yulia Abitbul, Employee

  • 378 Points 250 badge 2x thumb
Hi KYUNGCHAN,

You can shutdown interface, disable ISL and apply ACL
ACLs are not allowed on ISL links,

Best Regards,
Yulia