Applying an ip acl to a data interface – Brocade Network OS NETCONF Operations Guide v4.1.1 User Manual

Page 450

Advertising
background image

418

Network OS NETCONF Operations Guide

53-1003231-02

IP ACL

28

5. Under the <ip> or <ipv6> node, include the <access-group> node element located in either the

urn:brocade.com:mgmt:brocade-ip-access-list or
urn:brocade.com:mgmt:brocade-ipv6-access-list namespace, respectively.

6. Under the <access-group> node, include the <mgmt-ip-access-list> or

<mgmt-ipv6-access-list> leaf node, and specify the name of the access list.

The following example applies stdV6ACL1 to the management interface.

<?xml version="1.0" encoding="UTF-8"?>

<rpc message-id="2410" xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">

<edit-config>

<target>

<running/>

</target>

<config>

<interface xmlns="urn:brocade.com:mgmt:brocade-interface">

<management>

<name>3/1</name>

<ipv6>

<access-group

xmlns="urn:brocade.com:mgmt:brocade-ipv6-access-list">

<mgmt-ipv6-access-list>stdV6ACL1</mgmt-ipv6-access-list>

</access-group>

</ipv6>

</management>

</interface>

</config>

</edit-config>

</rpc>

<rpc-reply message-id="2410" xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">

<ok/>

</rpc-reply>

Applying an IP ACL to a data interface

To apply the IP ACLs to a data interface, perform the following steps.

1. Issue the <edit-config> RPC to configure the <interface> node in the

urn:brocade.com:mgmt:brocade-interface namespace.

2. Under the <interface> node, include the <gigabitethernet>, <tengigabitethernet>,

<fortygigabitethernet>, <hundredgigabitethernet>, or <port-channel> node element to
configure the data interface.

3. Under the <gigabitethernet>, <tengigabitethernet>, <fortygigabitethernet>,

<hundredgigabitethernet>, or <port-channel> node, include the <name> node and specify the
name of the data interface in [rbridge-id/]slot/port format, or port-number format for a
port-channel interface.

4. Under the <gigabitethernet>, <tengigabitethernet>, <fortygigabitethernet>,

<hundredgigabitethernet>, or <port-channel> node, include the <ip-acl-interface><ip>
hierarchy node elements located in the urn:brocade.com:mgmt:brocade-ip-access-list
namespace, respectively.

5. Under the <ip> node, include the <access-group> node element.

Advertising
See also other documents in the category Brocade Computer Accessories: