× NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Orbi WiFi 7 RBE973
Reply

Re: M4300 v4 ACL Failed to assign ACL

edubergeek
Follower

M4300 v4 ACL Failed to assign ACL

I prepared an Extended Rule v4 ACL but when I apply it to either VLAN or port (outbound) I get the error "Failed to assign ACL". No further details so I have no idea what is wrong.

 

(sw1) #show ip access-lists IPP

ACL Name: IPP


Sequence Number: 1
Action......................................... permit
Match All...................................... False
Protocol....................................... 6(tcp)
Destination IP Address......................... 166.122.172.0
Destination IP Wildcard Mask................... 0.0.0.31
Destination L4 Start Port...................... 1024
Destination L4 End Port........................ 65535
Established.................................... TRUE

 

(sw1) (Interface 1/0/1)#ip access-group IPP out

1/0/1
Error! processing ACL.

 

 

 

 

Message 1 of 2
LaurentMa
NETGEAR Expert

Re: M4300 v4 ACL Failed to assign ACL

Hello, I think you are not using the mask correctly?

 

ACLs are using the mask in a different way: the "255" means strict compliance with the octet in the IP address, when "0" means ignore the corresponding octet.

 

In more technical way, for IP ACLs (from the ? help button in the IT GUI): When "IP Address" radio-button is selected, enter an IP address with relevant wild card mask to apply this criteria. Wild card mask determines which bits are used and which bits are ignored. A wild card mask of 0.0.0.0 indicates that none of bits are important. A wild card of 255.255.255.255 indicates that all of the bits are important.

 

Message 2 of 2
Discussion stats
  • 1 reply
  • 336 views
  • 0 kudos
  • 2 in conversation
Announcements