apply access-list control-plane
Syntax
apply access-list {ip|ipv6} <ACL-NAME> control-plane vrf <VRF-NAME>
no apply access-list {ip|ipv6} <ACL-NAME> control-plane vrf <VRF-NAME>
Description
Applies an ACL to the specified VRF.
The
no
form of this command removes application of the ACL from the specified VRF.
Command context
config
Parameters
ip|ipv6
Specifies the ACL type:
ip
for IPv4, oripv6
for IPv6.<ACL-NAME>
Specifies the ACL name.
vrf <VRF-NAME>
Specifies the VRF name.
Authority
Administrators or local user group members with execution rights for this command.
Usage
Only one ACL per type (
ip
, oripv6
) may be applied to a control plane VRF at a time. Therefore, using theapply access-list control-plane
command on a VRF with an already-applied ACL of the same type, will replace the applied ACL.
Examples
Applying My_ip_ACL to control plane traffic on the default VRF:
switch(config)# apply access-list ip My_ip_ACL control-plane vrf default
Replacing My_ip_ACL with My_Replacement_ACL on the default VRF:
switch(config)# apply access-list ip My_Replacement_ACL control-plane vrf default
Remove (unapply) the My_Replacement_ACL from the default VRF. Any other interfaces or VLANs with My_Replacement_ACL applied are unaffected.
switch(config)# no apply access-list ip My_Replacement_ACL control-plane vrf default