cancel
Showing results for 
Search instead for 
Did you mean: 

convert cisco acl in to extreme summit X440

convert cisco acl in to extreme summit X440

zain_mallick
New Contributor
access-list 10 permit 172.16.66.246
access-list 10 permit 172.16.66.241
access-list 10 permit 172.16.72.110
access-list 10 permit 172.16.72.84
access-list 10 permit 172.168.202.100
access-list 10 permit 172.16.72.17

this is cisco code and i want this code in extreme X440...plz guide me and give me a code in detail.

19 REPLIES 19

thanx sir for ur kindness..

access-list 10 permit 172.16.66.246
access-list 10 permit 172.16.66.241
access-list 10 permit 172.16.72.110
access-list 10 permit 172.16.72.84
access-list 10 permit 172.168.202.100
access-list 10 permit 172.16.72.17

sir this is cisco code,and i want this code in XOS....

zain_mallick
New Contributor
i m little bit confused,that which code i followed...

Ryan_Mathews
Extreme Employee
Incredible thread guys. Lots of great stuff going on here. Well done!

Erik_Auerswald
Contributor II
Hello Zain,

simple IOS-like ACLs can be converted to EXOS using E2X (https://gtacknowledge.extremenetworks.com/articles/How_To/How-to-convert-EOS-configurations-to-EXOS-...). More complex IOS ACLs can be converted to EXOS using IOStoEXOSACL (https://github.com/extremenetworks/ExtremeScripting/blob/master/EXOS/Perl/IOStoEXOSACL).

I used E2X to convert your ACL to the following policy file:

# acl_10.pol
entry 10 {
if {
source-address 172.16.66.246/255.255.255.255;
} then {
permit;
}
}
entry 20 {
if {
source-address 172.16.66.241/255.255.255.255;
} then {
permit;
}
}
entry 30 {
if {
source-address 172.16.72.110/255.255.255.255;
} then {
permit;
}
}
entry 40 {
if {
source-address 172.16.72.84/255.255.255.255;
} then {
permit;
}
}
entry 50 {
if {
source-address 172.168.202.100/255.255.255.255;
} then {
permit;
}
}
entry 60 {
if {
source-address 172.16.72.17/255.255.255.255;
} then {
permit;
}
}
# next entry added to match EOS ACL implicit deny
entry 70 {
if {
source-address 0.0.0.0/0;
} then {
deny;
}
}

Best regards,
Erik

The converter script is a tool you can use on any computer with Perl to convert an IOS ACL to an EXOS ACL. It is not installed or used on the switch.

Information about converting an ACL from IOS to EXOS can be found in this thread and in GTAC Knowledge: https://gtacknowledge.extremenetworks.com/articles/How_To/How-to-Convert-a-Cisco-IOS-Access-List-for...
GTM-P2G8KFN