This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

16.2 ACL

16.2 ACL

Cris_Collins
New Contributor

‎08-19-2024 09:57 AM

I am mirroring a port that has the following ACL applied to a port's egress and see traffic not destined to 00:a0:aa:d0:01:08 in the captures. Does the mirror look at traffic before it hits the ACL or after?

entry host8{
if {
ethernet-destination-address 00:a0:aa:d0:01:08;
}
then {permit;}
}
entry DenyAll{
if{
source-address 0.0.0.0/0;
} then {deny;
count block_acl;
}

 

Thank you for any insight you are able to provide.

0 Kudos
1 REPLY 1

Stefan_K_
Valued Contributor

‎08-19-2024 10:37 AM

Hi @Cris_Collins 

Instead of exluding all other traffic afterwards, I would simply include only the desired traffic:

How To: How To Mirror Specific Type of Traffic | Extreme Portal (site.com)

Best regards
Stefan

0 Kudos
GTM-P2G8KFN