- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
Re: M4300 v4 ACL Failed to assign ACL
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
M4300 v4 ACL Failed to assign ACL
I prepared an Extended Rule v4 ACL but when I apply it to either VLAN or port (outbound) I get the error "Failed to assign ACL". No further details so I have no idea what is wrong.
(sw1) #show ip access-lists IPP
ACL Name: IPP
Sequence Number: 1
Action......................................... permit
Match All...................................... False
Protocol....................................... 6(tcp)
Destination IP Address......................... 166.122.172.0
Destination IP Wildcard Mask................... 0.0.0.31
Destination L4 Start Port...................... 1024
Destination L4 End Port........................ 65535
Established.................................... TRUE
(sw1) (Interface 1/0/1)#ip access-group IPP out
1/0/1
Error! processing ACL.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: M4300 v4 ACL Failed to assign ACL
Hello, I think you are not using the mask correctly?
ACLs are using the mask in a different way: the "255" means strict compliance with the octet in the IP address, when "0" means ignore the corresponding octet.
In more technical way, for IP ACLs (from the ? help button in the IT GUI): When "IP Address" radio-button is selected, enter an IP address with relevant wild card mask to apply this criteria. Wild card mask determines which bits are used and which bits are ignored. A wild card mask of 0.0.0.0 indicates that none of bits are important. A wild card of 255.255.255.255 indicates that all of the bits are important.