apply access-list control-plane

Syntax

apply access-list {ip|ipv6} <ACL-NAME> control-plane vrf <VRF-NAME>

no apply access-list {ip|ipv6} <ACL-NAME> control-plane vrf <VRF-NAME>

Description

Applies an ACL to the specified VRF.

The no form of this command removes application of the ACL from the specified VRF.

Command context

config

Parameters

ip|ipv6

Specifies the ACL type: ip for IPv4, oripv6 for IPv6.

<ACL-NAME>

Specifies the ACL name.

vrf <VRF-NAME>

Specifies the VRF name.

Authority

Administrators or local user group members with execution rights for this command.

Usage

  • Only one ACL per type (ip, or ipv6) may be applied to a control plane VRF at a time. Therefore, using the apply access-list control-plane command on a VRF with an already-applied ACL of the same type, will replace the applied ACL.

Examples

Applying My_ip_ACL to control plane traffic on the default VRF:

switch(config)# apply access-list ip My_ip_ACL control-plane vrf default

Replacing My_ip_ACL with My_Replacement_ACL on the default VRF:

switch(config)# apply access-list ip My_Replacement_ACL control-plane vrf default

Remove (unapply) the My_Replacement_ACL from the default VRF. Any other interfaces or VLANs with My_Replacement_ACL applied are unaffected.

switch(config)# no apply access-list ip My_Replacement_ACL control-plane vrf default