Controller Based WLANs

 View Only
last person joined: one year ago 

APs, Controllers, VIA
Back to Library

https://na2.salesforce.com/knowledge/publishing/articleOnlineDetail.apexp?id=kA240000000L3fL 

Sep 19, 2014 08:31 AM

Environment : Aruba OS

 

Answer :

 

Mac Acl does not get pushed from master to standby it’s by design.You need to create the Acl on the standby aswell.
 
HERS IS THE LAB TEST RESULTS
=============================
 
 
Reproduction Steps:
 

 
1) Create a ‘ip access-list mac’ acl in the Master.
2) Did write memory
3) It is not being pushed to the Standby
4) Created a ‘ip access-list session’ acl in the master and that gets pushed to the standby
 
In Master:
 
(Aruba3400) #show switches
 
All Switches
------------
IP Address      Name       Location          Type     Model      Version        Status  Configuration State  Config Sync Time (sec)  Config ID
----------      ----       --------          ----     -----      -------        ------  -------------------  ----------------------  ---------
10.168.172.4    Aruba3400  Building1.floor1  master   Aruba3400  6.2.1.3_39155  up      UPDATE SUCCESSFUL    0                       3
10.168.172.100  Aruba3400  Building1.floor1  standby  Aruba3400  6.2.1.3_39155  up      UPDATE SUCCESSFUL    17                      3
 
(Aruba3400) (config) #ip access-list mac  TACTest ?
<cr>                         
 
(Aruba3400) (config) #ip access-list mac  TACTest
(Aruba3400) (config-mac-TACTest)#?
deny                    Specify packets to reject
no                      Delete Command
permit                  Specify packets to forward
 
(Aruba3400) (config-mac-TACTest)#permit 00:11:22:33:44:55
(Aruba3400) (config-mac-TACTest)#write m
Saving Configuration...
 
Configuration Saved.
 
(Aruba3400) (config-mac-TACTest)#show ip access-list mac    a  TACTest
 
ip access-list mac TACTest
  permit host 00:11:22:33:44:55
 
In Standby:
 
(Aruba3400) #show switches
 
All Switches
------------
IP Address      Name       Location          Type     Model      Version        Status  Configuration State  Config Sync Time (sec)  Config ID
----------      ----       --------          ----     -----      -------        ------  -------------------  ----------------------  ---------
10.168.172.100  Aruba3400  Building1.floor1  standby  Aruba3400  6.2.1.3_39155  up      UPDATE SUCCESSFUL    0                       4
 
(Aruba3400) #show ip access-list TACTest
Unknown access-list 'TACTest'
 
In Master:
 
(Aruba3400) (config-mac-TACTest)#ip access-list session TACTest2
(Aruba3400) (config-sess-TACTest2)#any any any permit
(Aruba3400) (config-sess-TACTest2)#write m
Saving Configuration...
 
Configuration Saved.
 
In Standby:
 
(Aruba3400) #show ip access-list TACTest2
 
ip access-list session TACTest2
TACTest2
--------
Priority  Source  Destination  Service  Action  TimeRange  Log  Expired  Queue  TOS  8021P  Blacklist  Mirror  DisScan  ClassifyMedia  IPv4/6
--------  ------  -----------  -------  ------  ---------  ---  -------  -----  ---  -----  ---------  ------  -------  -------------  ------
1         any     any          any      permit                           Low                                                           4
 
(Aruba3400) #show ip access-list TACTest
Unknown access-list 'TACTest'
 

Statistics
0 Favorited
0 Views
0 Files
0 Shares
0 Downloads

Related Entries and Links

No Related Resource entered.