This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

ACL - redirect-port issue

ACL - redirect-port issue

EtherNation_Use
Contributor II

‎01-07-2014 09:53 PM

Create Date: Jun 19 2012 5:41AM

Dear all,

I have the following ACL (acl1.pol) applied into port 25:

configure access-list acl1 ports 25 ingress

acl1.pol info:

entry 1 {

if {

source-address 10.80.17.182/32;

}

then {

redirect-port 2

}

}

entry 2 {

if {

destination-address 10.80.17.182/32;

}

then {

redirect-port 2

}

}





It works fine when both source and destination ports (25 and 2) are on the same vlan.

This is a Lab that I'm trying to reproduce, on which I'll need that the port 25 remains on a different vlan.

When I just change it's vlan, I stopped receiving the traffic on redirected-port (#2).

Any ideas on what can be done?



Regards,

Leandro

(from Leandro_Brito)
0 Kudos
5 REPLIES 5

EtherNation_Use
Contributor II

‎01-07-2014 09:53 PM

Create Date: Jun 19 2012 6:27AM

Hey Leandro

The ACL you have below is for L2 which means that the ports will need to be on the same VLAN just like any other L2 traffic i.e broadcast.

If you want to go across VLANs than you need to route the traffic with L3. The concepts guide has an example but essentially instead of the physical port you would add the next hop IP.

Hope that helps.

P (from Paul_Russo)
0 Kudos
li.common.scroll-to.top
GTM-P2G8KFN