NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
M4300 v4 ACL Failed to assign ACL
I prepared an Extended Rule v4 ACL but when I apply it to either VLAN or port (outbound) I get the error "Failed to assign ACL". No further details so I have no idea what is wrong.
(sw1) #show ip access-lists IPP
ACL Name: IPP
Sequence Number: 1
Action......................................... permit
Match All...................................... False
Protocol....................................... 6(tcp)
Destination IP Address......................... 166.122.172.0
Destination IP Wildcard Mask................... 0.0.0.31
Destination L4 Start Port...................... 1024
Destination L4 End Port........................ 65535
Established.................................... TRUE
(sw1) (Interface 1/0/1)#ip access-group IPP out
1/0/1
Error! processing ACL.
1 Reply
Hello, I think you are not using the mask correctly?
ACLs are using the mask in a different way: the "255" means strict compliance with the octet in the IP address, when "0" means ignore the corresponding octet.
In more technical way, for IP ACLs (from the ? help button in the IT GUI): When "IP Address" radio-button is selected, enter an IP address with relevant wild card mask to apply this criteria. Wild card mask determines which bits are used and which bits are ignored. A wild card mask of 0.0.0.0 indicates that none of bits are important. A wild card of 255.255.255.255 indicates that all of the bits are important.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
