16-51
Catalyst 6000 Family Software Configuration Guide—Releases 6.3 and 6.4
78-13315-02
Chapter 16 Configuring Access Control
Configuring Policy-Based Forwarding
To specify an adjacency table entry for the PFC2, perform this task in privileged mode:
This example shows how to specify the adjacency table entry:
Console> (enable)
set security acl adjacency ADJ1 11 00-00-00-00-00-0B
ADJ1 editbuffer modified. Use 'commit' command to apply changes.
Console> (enable)
This example shows how to create the PBF VACL for VLAN 10 (shown in
Figure 16-8
):
Console> (enable)
set security acl adjacency ADJ1 11 00-00-00-00-00-0B
ADJ1 editbuffer modified. Use 'commit' command to apply changes.
Console> (enable)
set security acl ip IPACL1 redirect ADJ1 ip host 10.0.0.1 host 11.0.0.1
IPACL1 editbuffer modified. Use 'commit' command to apply changes.
Console> (enable)
set security acl ip IPACL1 permit any
IPACL1 editbuffer modified. Use 'commit' command to apply changes.
Console> (enable)
commit security acl adjacency
Commit operation in progress.
Adjacency successfully committed.
Console> (enable)
commit security acl IPACL1
ACL commit in progress.
ACL 'IPACL1' successfully committed.
Console> (enable)
set security acl map IPACL1 10
Mapping in progress.
ACL IPACL1 successfully mapped to VLAN 10.
Console> (enable)
This example shows how to create the PBF VACL for VLAN 11
(see
Figure 16-8
)
:
Console> (enable)
set security acl adjacency ADJ2 10 00-00-00-00-00-0A
ADJ2 editbuffer modified. Use 'commit' command to apply changes.
Console> (enable)
set security acl ip IPACL2 redirect ADJ2 ip host 11.0.0.1 host 10.0.0.1
IPACL2 editbuffer modified. Use 'commit' command to apply changes.
Console> (enable)
set security acl ip IPACL2 permit any
IPACL2 editbuffer modified. Use 'commit' command to apply changes.
Console> (enable)
commit security acl adjacency
Commit operation in progress.
Adjacency successfully committed.
Console> (enable)
commit security acl IPACL2
ACL commit in progress.
ACL 'IPACL2' successfully committed.
Console> (enable)
set security acl map IPACL2 11
Mapping in progress.
ACL IPACL2 successfully mapped to VLAN 11.
Console> (enable)
Task
Command
Specify an adjacency table entry for the PFC2.
set security acl adjacency
adjacency
_
name
dest
_
vlan
dest
_
mac
[[
source_mac
] |
[
source_mac
mtu
mtu_size
] | [
mtu
mtu_size
]]