Hi,
I have an issue with session ACL assigned to a VLAN on a trunk port (port-channel). Controller model 7210, OS 8.5.0.0 The ACL is applied only to the traffic originated FROM the VLAN, but any traffic TO the VLAN is allowed. Maybe it is the intended behavior, can anyone confirm this?
Command on trunk port with all VLANs trusted:
'ip access-group vlan 30 session "ACL-name"'
Any traffic towards a host in the VLAN is permitted, ACL works only for traffic coming from the VLAN.
Regards,
Balazs