Configuring Vacls For Pbf - Cisco WS-X6066-SLB-APC - Content Switching Module Software Manual

Configuring Policy-Based Forwarding
This example shows how to clear the PBF MAC address:
Console> (enable) clear pbf
PBF cleared.
Console> (enable)
Console> (enable) show pbf
Pbf status
-----------
not set
Console> (enable)

Configuring VACLs for PBF

Enter the set security acl adjacency command to specify the rewrite information in the adjacency table
Note
that causes the packet header to be rewritten (destination VLAN and source and destination MAC
addresses) and forwarded to the destination VLAN.
Note that the source MAC address is optional. If you do not specify the source MAC address, the system
defaults to the PBF MAC address.
You can configure a maximum of 256 adjacency table entries for a VLAN. The maximum number of
Note
adjacency table entries is 1023.
To enable jumbo frame forwarding using PBF, enter the mtu keyword in the set security acl
Note
adjacency command.
The order of entries in a PBF VACL is important. The adjacency table entry has to be defined in the VACL
before the redirect ACE because the redirect ACE uses it to redirect traffic. You should create entries for
PBF VACLs in the following order:
1.
2.
3.
4.
5.
You can combine steps 3 and 4 by entering the commit security acl all command.
Note
Note The same adjacency table entry can be used by more than one redirect ACE.
Catalyst 6000 Family Software Configuration Guide—Releases 6.3 and 6.4
16-50
Mac address
------------------
00-00-00-00-00-00
Specify the adjacency table entry.
Specify the redirect ACE in the PBF VACL that is using the adjacency table entry.
Commit the adjacency table entry.
Commit the PBF VACL.
Map the PBF VACL to a single VLAN or multiple VLANs.
Chapter 16 Configuring Access Control
78-13315-02