VLAN Access-List (VACL)
VLAN ACL (also called VLAN map) provides packet filtering for all types of traffic that are bridged within a VLAN or routed into or out of the VLAN. Unlike Router ACL, VACL is not defined by a direction (input or output). All packets entering the VLAN (bridged or routed) are checked against the VACL. It is possible to filter traffic based on the direction of the traffic by combining VACLs and Private VLAN features.
VACLs are processed in hardware, so there is no performance penalty in processing them. Therefore, they are also referred to as wire-speed ACLs. The forwarding rate remains unchanged regardless of the size of the access list because the lookup of VACLs is performed in hardware.
VACLs are processed in the ACL TCAM hardware
See also[edit]
- VLAN, VTP, VLAN Access-List (VACL), IOS: Create a VLAN, Change vlan configuration,
show vlan,show vlan brief,show vlan summary,show vtp status,switchport,set vlan,vtp mode transparent - ACL,
SubInACL.exe, Cisco ACLs,getfacl,setfacl,lsattr,chattr, xattr, NACLs - Cisco IOS: Cisco IOS XE, Config (mode), VLANs, Cisco IOS logging, VTP, ACLs,
show logging,show logging history,show interface status,debug,archive,show archive,conf t,int,ip http server,ip ssh,ip address, vty,show mac address-table,show access-list, Access-list,ip access-group,admin
Advertising:
