Can I somehow create an ACL that uses a local subnet as source?
access-list ip CoPP
permit any vlan3100 any
apply access-list ip CoPP control-plane vrf default
Use Case: customer would like to allow control-plane access to a switch from one local subnet/VLAN but not work with the source network in an ACL.You can build aliases as below so the ACL is identical across all switches, but that alias would have to be populated during deployment.
object-group ip address object_name
access-list ip ACL_name
10 permit any object_name any
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2021 Hewlett Packard Enterprise Development LPAll Rights Reserved.