last person joined: 3 hours ago 

Bring performance and reliability to your network with the Aruba Core, Aggregation, and Access layer switches. Discuss the latest features and functionality of the ArubaOS-Switch and ArubaOS-CX devices, and find ways to improve security across your network to bring together a mobile first solution.
Expand all | Collapse all


Jump to Best Answer
  • 1.  8320 VLAN ACL

    Posted Jul 03, 2019 05:48 PM

    Does anyone know when the 8320’s will support an ACL being applied to a VLAN interface?

    Alternatively does anyone know another way to achieve this on a VLAN ... on an interface wont work for what I’m trying to do.


  • 2.  RE: 8320 VLAN ACL

    Posted Jul 03, 2019 10:54 PM

    The 8320 switch support extended ACL and in that VLAN ACL(VLAN-ACL) as well.


    for configuring the VLAN based ACL find the below configuration template.


    1) configure the extended ACL name

    SW(config)# ip access list  extended < name>

    2) configure the rules that permit the traffic or deny the traffic like

    SW( config-ext-NaCl) # permit udp any host 10.x.x.x eq boots


    apply the ACL inbound to vlanxx

    SW(config)# VLAN xx IP access-group name in


    Aruba is providing the one advanced switching course ( Implementing the campus switching) 





  • 3.  RE: 8320 VLAN ACL

    Posted Sep 20, 2019 07:56 AM

    Is there anything related to arubaos-cx training on the inter-tube similar to the excellent cisco based cbt-micro-nuggets for arubaos-cx ????

  • 4.  RE: 8320 VLAN ACL

    Posted Jul 04, 2019 03:29 AM

    It is supported since release 10.2.

  • 5.  RE: 8320 VLAN ACL

    Posted Jul 04, 2019 04:03 AM
    Thanks ... I’m running version

    TL 10.02.0010

    I don’t see the support for those commands on this ArubaOS-CX?

    Went into the conf mode ... vlan 100 - everything else after the vlan 100 doesn’t allow further options?

    Tried going into the vlan interface to apply a access list but no options there either?


  • 6.  RE: 8320 VLAN ACL
    Best Answer

    Posted Jul 04, 2019 04:15 AM

    you need to enter "apply access-list ip|ipv6|mac name in" in the vlan

    (not the L3 vlan interface).

  • 7.  RE: 8320 VLAN ACL

    Posted Jul 04, 2019 05:13 AM
    Perfect - thanks