This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

convert cisco acl in to extreme summit X440

convert cisco acl in to extreme summit X440

zain_mallick
New Contributor

‎04-19-2016 02:46 AM

access-list 10 permit 172.16.66.246
access-list 10 permit 172.16.66.241
access-list 10 permit 172.16.72.110
access-list 10 permit 172.16.72.84
access-list 10 permit 172.168.202.100
access-list 10 permit 172.16.72.17

this is cisco code and i want this code in extreme X440...plz guide me and give me a code in detail.

0 Kudos
19 REPLIES 19

zain_mallick
New Contributor
In response to Matthew_Helm1

‎04-20-2016 03:10 AM

thanx sir for ur kindness..

access-list 10 permit 172.16.66.246
access-list 10 permit 172.16.66.241
access-list 10 permit 172.16.72.110
access-list 10 permit 172.16.72.84
access-list 10 permit 172.168.202.100
access-list 10 permit 172.16.72.17

sir this is cisco code,and i want this code in XOS....
0 Kudos

zain_mallick
New Contributor

‎04-20-2016 02:45 AM

i m little bit confused,that which code i followed...
0 Kudos

Ryan_Mathews
Extreme Employee

‎04-19-2016 10:54 AM

Incredible thread guys. Lots of great stuff going on here. Well done!
0 Kudos

Erik_Auerswald
Contributor II

‎04-19-2016 07:48 AM

Hello Zain,

simple IOS-like ACLs can be converted to EXOS using E2X (https://gtacknowledge.extremenetworks.com/articles/How_To/How-to-convert-EOS-configurations-to-EXOS-...). More complex IOS ACLs can be converted to EXOS using IOStoEXOSACL (https://github.com/extremenetworks/ExtremeScripting/blob/master/EXOS/Perl/IOStoEXOSACL).

I used E2X to convert your ACL to the following policy file:

# acl_10.pol
entry 10 {
if {
source-address 172.16.66.246/255.255.255.255;
} then {
permit;
}
}
entry 20 {
if {
source-address 172.16.66.241/255.255.255.255;
} then {
permit;
}
}
entry 30 {
if {
source-address 172.16.72.110/255.255.255.255;
} then {
permit;
}
}
entry 40 {
if {
source-address 172.16.72.84/255.255.255.255;
} then {
permit;
}
}
entry 50 {
if {
source-address 172.168.202.100/255.255.255.255;
} then {
permit;
}
}
entry 60 {
if {
source-address 172.16.72.17/255.255.255.255;
} then {
permit;
}
}
# next entry added to match EOS ACL implicit deny
entry 70 {
if {
source-address 0.0.0.0/0;
} then {
deny;
}
}

Best regards,
Erik
0 Kudos

Erik_Auerswald
Contributor II
In response to Erik_Auerswald

‎04-19-2016 07:48 AM

The converter script is a tool you can use on any computer with Perl to convert an IOS ACL to an EXOS ACL. It is not installed or used on the switch.

Information about converting an ACL from IOS to EXOS can be found in this thread and in GTAC Knowledge: https://gtacknowledge.extremenetworks.com/articles/How_To/How-to-Convert-a-Cisco-IOS-Access-List-for...
0 Kudos
GTM-P2G8KFN