Header Only - DO NOT REMOVE - Extreme Networks
Question

X440-G2 Edge Licence L2/L3 ACL egress

  • 7 February 2019
  • 0 replies
  • 228 views

Hi all,

Is there an option to combine arp and ip rules in one policy which has to be implemented on egress port?
As per entires below I am getting the error message:
Error: ACL install operation failed - filter hardware full for vlan *, port 2
NOTE: I think it is not related to configure access-list vlan-acl-precedence shared
e.g
##### #######################################################
##### permit traffic from (192.168.1.10)
##### #######################################################
entry 001 {
if {
source-address 192.168.1.10 mask 255.255.255.255 ;
} then {
count permit-srcIP_192.168.1.10 ;
permit ;
}
}

##### #######################################################
##### Permit ARP traffic for 192.168.1.44)
##### #######################################################
entry 002 {
if match any {
ethernet-type 0x0806 ;
arp-target-address 192.168.1.44 mask 255.255.255.255 ;
} then {
count permitARP-dstIP_192.168.1.44 ;
permit ;
}
}

0 replies

Be the first to reply!

Reply