Specifications
Mapping Security ACLs
RoamAbout Mobility System Software Configuration Guide 15-15
Displaying ACL Maps to VLANs and Virtual Ports
TwocommandsdisplaytheVLAN,virtualport,andDistributedAPmappingofaspecific
securityACL.
Example
ToshowtheVLANs,virtualports,andDistributedAPsmappedtoacl‐999,typeoneofthe
followingcommands:
RBT-8100# show security acl map acl-999
ACL acl-999 is mapped to:
Port 9 In
Port 9 Out
RBT-8100# show security acl
ACL table
ACL Type Class Mapping
-------------------------------- ---- ------ -------
acl-orange IP Static
acl-999 IP Static Port 9 In
Port 9 Out
acl-blue IP Static Port 1 In
acl-violet IP Static VLAN 1 Out
Clearing a Security ACL Map
ToclearthemappingbetweenasecurityACLandoneormoreVLANs,virtualports,or
DistributedAPs,firstdisplaythemappingwithshowsecurityaclmapandthenuseclear
securityaclmaptoremoveit.Thiscommandremovesthemapping,butnottheACL.
Examples
ToclearthesecurityACLacljoefromatypethefollowingcommands:
RBT-8100# show security acl map acljoe
ACL acljoe is mapped to:
Port 4 In
RBT-8100# clear security acl map acljoe port 4 in
success: change accepted.
Afteryouclearthemappingbetweenport 4andACLacljoe,thefollow ingisdisplayedwhenyou
entershowsecurityaclmap:
RBT-8100# show security acl map acljoe
ACL acljoe is mapped to:
ClearingasecurityACLmappingdoesnotstopthecurrentfilteringfunctioniftheACLhasother
mappings.IfthesecurityACLismappedtoanotheraVLAN,avirtualport,oraDistributedAP,
youmustenteraclearsecurityaclmapcommandtocleareachmap.
Tostopthe
packetfilteringofauser‐basedsecurityACL,youmustmodifytheuser’s
configurationinthelocaldatabaseontheRASorontheRADIUS serverswherepacketfiltersare
authorized.Forinformat ion aboutdeletingasecurityACLfromauser’sconfigurationinthelocal
RASdatabase,see“Clearinga
SecurityACLfromaUserorGroup”onpage 17 ‐49.