Rebinding a racl definition or policy-map, Deactivating the racl configuration, Deleting the racl configuration – Brocade Multi-Service IronWare Security Configuration Guide (Supporting R05.6.00) User Manual

150

Multi-Service IronWare Security Configuration Guide

53-1003035-02

IP receive ACLs

3

NOTES:

The following limitations apply when the number variable has a maximum limit of 16384.

•

The 16K Receive ACL CAM partition is not supported on the cam profiles such as IPv6,
Multi-service 3, and Multi-service 4.

•

Depending on the configuration, any of the IPv4 ACL sub-partitions such as IP Source
Guard, Broadcast ACL, IP Multicast, and Open Flow should be decreased to allow the
creation of the 16K rACL partition.

Rebinding a rACL definition or policy-map

If a change is made to the definition of an IP rACL or to a rate-limiting, policy map that is specified
for an rACL, you must perform a rebind using either of the following commands:

Brocade(config)# ip rebind-receive-acl all

or

Brocade(config)# ip receive rebind-acl-all

Syntax: ip rebind-receive-acl all

Syntax: ip receive rebind-acl-all

NOTE

If you add or delete an IP address to or from a device interface, you need to rebind the IP receive
ACLs.

Deactivating the rACL configuration

To deactivate the IPv4 rACL configuration and remove all the rules from CAM, enter the following
command.

Brocade(config)# ip receive deactivate-acl-all

Syntax: [no] ip receive deactivate-acl-all

The no form of this command reactivates the rACL configuration.

NOTE

To prevent ACL binding to CAM after reload, use the write memory command to save this
configuration change permanently.

Deleting the rACL configuration

To delete the rACL configuration and remove all IPv4 rACL rules from the system, use the following
command.

Brocade(config)# ip receive delete-acl-all

This command deletes all IP Receive ACLs from system.

Are you sure? (enter 'y' or 'n'): y

Syntax: ip receive delete-acl-all