Purpose
Command or Action
switch(config)# vlan filter acl-mac-map vlan-list
1-20,26-30
switch(config)#
Displays the ACL configuration.
(Optional)
show running-config aclmgr
Example:
Step 3
switch(config)# show running-config aclmgr
Copies the running configuration to the startup
configuration.
(Optional)
copy running-config startup-config
Example:
Step 4
switch(config)# copy running-config startup-config
Verifying the VACL Configuration
To display VACL configuration information, perform one of the following tasks:
Purpose
Command
Displays the ACL configuration, including the VACL-related configuration.
This command displays the user-configured ACLs in the running
configuration. The
all
option displays both the default
(CoPP-configured) and user-configured ACLs in the running
configuration.
Note
show running-config aclmgr
[
all
]
Displays the ACL startup configuration.
This command displays the user-configured ACLs in the startup
configuration. The
all
option displays both the default
(CoPP-configured) and user-configured ACLs in the startup
configuration.
Note
show startup-config aclmgr
[
all
]
Displays information about VACLs that are applied to a VLAN.
show vlan filter
Displays information about VLAN access maps.
show vlan access-map
Monitoring and Clearing VACL Statistics
To monitor or clear VACL statistics, use one of the commands in this table.
Purpose
Command
Displays the VACL configuration. If the VLAN access-map includes the
statistics per-entry
command, the
show vlan access-list
command output
includes the number of packets that have matched each rule.
show vlan access-list
Clears statistics for VACLs.
clear vlan access-list counters
Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.x
301
Configuring VLAN ACLs
Verifying the VACL Configuration