Cisco 813 Specifications Page 85
- Page / 112
- Table of contents
- TROUBLESHOOTING
- BOOKMARKS
Rated. / 5. Based on customer reviews
CHAPTER 7
Campus Network Security
VACLs
Cisco switches support of various kinds of ACLs:
n Traditional Router ACL (RACL)
n QoS ACL
n VA C L
VLAN access control lists (VACL) are similar to route-maps because they are composed of statements that contain match
and set conditions. In a VACL, the “set” conditions are called “actions.” Actions include forward, drop, and redirect.
Like route-maps, VACL statements are numbered for ordering. After configuration, VACLs are applied to traffic to speci-
fied VLANs.
The following is a sample VACL that instructs the switch to drop traffic matching ACL 101 (not shown) and forward all
other traffic:
Switch(config)# vlan access-map Drop101 10
Switch(config-access-map)# match ip address 101
Switch(config-access-map)# action drop
!
Switch(config-access-map)# vlan access-map Drop101 20
Switch(config-access-map)# action forward
!
Switch(config)# vlan filter Drop101 vlan-list 10
To view VACL settings, use the commands show vlan access-map vacl_name or show vlan filter access-map
vacl_name.
[ 85 ]
© 2010 Pearson Education, Inc. All rights reserved. This publication is protected by copyright. Please see page 112 for more details.
CCNP SWITCH 642-813 Quick Reference by Denise Donohue
- CCNP SWITCH 642-813 1
- Quick Reference 1
- About the Author 2
- About the Technical Editor 2
- Icons Used 3
- Chapter 1 4
- The Core Layer 5
- Small Campus Design 6
- Medium Campus Design 6
- Data Center Design 7
- Network Traffic Flow 8
- FIGURE 1-3 10
- Chapter 2 12
- FIGURE 2-1 13
- FIGURE 2-2 13
- VLAN Planning 14
- Verifying VLAN Configuration 15
- VLAN Trunking 17
- Configuring a Trunk Link 18
- VLANs Allowed on the Trunk 19
- VLAN Trunking Protocol 20
- VTP Switch Roles 21
- Configuring VTP 22
- Verifying and Monitoring VTP 23
- EtherChannels 24
- Configuring an EtherChannel 25
- Verifying an EtherChannel 26
- Troubleshooting VLAN Issues 27
- Troubleshooting VTP 28
- Chapter 3 29
- FIGURE 3-1 30
- The STP Election 32
- Root Port Election 33
- Designated Port Election 33
- Bridge Protocol Data Units 34
- Spanning Tree Port States 36
- Per-VLAN Spanning-Tree 36
- Configuring Spanning Tree 37
- Rapid Spanning Tree 38
- RSTP Port Roles 39
- BPDU Differences in RSTP 39
- RSTP Fast Convergence 39
- Multiple Spanning Tree 40
- (config-mst)# revision number 41
- (config-mst)# end 41
- # show spanning-tree mst 41
- UplinkFast 42
- BackboneFast 42
- BPDU Guard 43
- BPDU Filtering 43
- Root Guard 44
- Unidirectional Link Detection 44
- Loop Guard 45
- Troubleshooting STP 46
- Identifying a Bridging Loop 47
- Spanning-Tree Best Practices 47
- FIGURE 3-3 48
- Chapter 4 49
- MLS Interfaces 53
- CEF Switching 55
- FIGURE 4-1 56
- # show cef drop 58
- # show adjacency 58
- Chapter 5 59
- Technology 60
- Processes 61
- Network Level Resiliency 63
- Fast Failover 63
- Optimizing Redundancy 64
- Designing for Redundancy 65
- FIGURE 5-2 66
- FIGURE 5-3 67
- FIGURE 5-4 67
- Chapter 6 72
- HSRP States 73
- Configuring HSRP 74
- Chapter 7 79
- MAC Address-Based Attacks 80
- Port-Based Authentication 82
- VLAN-Based Attacks 83
- 802.1Q Double-Tagging 84
- Private VLANs 86
- Protected Ports 87
- Spoof Attacks 88
- Securing Your Switch 89
- Chapter 8 91
- VoIP in a Campus Network 92
- FIGURE 8-1 93
- Voice VLANs 94
- QoS for VoIP 95
- QoS Actions 96
- DSCP Values 97
- Trust Boundaries 98
- Manual Configuration 99
- Using AutoQoS 100
- Video over IP 101
- Chapter 9 102
- WLAN Topologies 104
- Client Connectivity 105
- Autonomous (Stand-alone) APs 106
- Lightweight Access Points 107
- Wireless LAN Controllers 109
- Switch Configuration 110
- CCNP SWITCH Quick Reference 112
Related products and manuals for Networking Cisco 813
Networking Cisco Engine 611 Specifications
(718 pages)
(718 pages)
Networking Cisco 3745 Installation Guide
(32 pages)
(32 pages)
Networking Cisco AIR-PCM352 - Aironet 350 Series 11Mbps Wireless LAN PC Card Adapter User Manual
(6 pages)
(6 pages)
Networking Cisco RPM-XF Specifications
(688 pages)
(688 pages)
Networking Cisco IAD2431-16FXS User's Guide
(94 pages)
(94 pages)
Networking Cisco 2613 User Manual
(16 pages)
(16 pages)
Networking Cisco IOS Router User Manual
(9 pages)
(9 pages)
Networking Cisco NM-HDV-1E1-30E - 30 Enhanced Channel E1 Voice/Fax Network Module Service Manual
(24 pages)
(24 pages)
Networking Cisco 15216 EDFA2 Specifications
(252 pages)
(252 pages)
Networking Cisco EZXS88W User's Guide
(10 pages)
(10 pages)
© 2020, manymanuals.com. All rights reserved. | 0.090 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals