Skip to content

Commit

Permalink
Merge pull request #1 from MaheshGSLAB/pr/Vibhu-gslab/3791
Browse files Browse the repository at this point in the history
Fix: fixed ACL for l2leaf and description
  • Loading branch information
Vibhu-gslab authored May 8, 2024
2 parents ef15a06 + 1746335 commit f1685dd
Show file tree
Hide file tree
Showing 40 changed files with 66 additions and 390 deletions.
Original file line number Diff line number Diff line change
Expand Up @@ -208,13 +208,6 @@ interface Vxlan1
vxlan vlan 311 vni 30311
vxlan vlan 350 vni 30350
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
15 deny ip any host 10.1.10.1
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
remark Some remark will not require source and destination fields.
permit ip host 10.1.10.1 any
!
ip routing
no ip routing vrf MGMT
!
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -208,13 +208,6 @@ interface Vxlan1
vxlan vlan 311 vni 30311
vxlan vlan 350 vni 30350
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
15 deny ip any host 10.1.10.1
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
remark Some remark will not require source and destination fields.
permit ip host 10.1.10.1 any
!
ip routing
no ip routing vrf MGMT
!
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -122,13 +122,6 @@ interface Vlan4091
mtu 1500
no autostate
ip address 10.255.252.14/31
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
15 deny ip any host 10.1.10.1
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
remark Some remark will not require source and destination fields.
permit ip host 10.1.10.1 any
no ip routing vrf MGMT
!
mlag configuration
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -122,13 +122,6 @@ interface Vlan4091
mtu 1500
no autostate
ip address 10.255.252.15/31
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
15 deny ip any host 10.1.10.1
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
remark Some remark will not require source and destination fields.
permit ip host 10.1.10.1 any
no ip routing vrf MGMT
!
mlag configuration
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -147,13 +147,6 @@ interface Vlan4091
mtu 1500
no autostate
ip address 10.255.252.16/31
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
15 deny ip any host 10.1.10.1
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
remark Some remark will not require source and destination fields.
permit ip host 10.1.10.1 any
no ip routing vrf MGMT
!
mlag configuration
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -147,13 +147,6 @@ interface Vlan4091
mtu 1500
no autostate
ip address 10.255.252.17/31
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
15 deny ip any host 10.1.10.1
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
remark Some remark will not require source and destination fields.
permit ip host 10.1.10.1 any
no ip routing vrf MGMT
!
mlag configuration
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -88,13 +88,6 @@ interface Management1
no shutdown
vrf MGMT
ip address 192.168.200.116/24
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
15 deny ip any host 10.1.10.1
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
remark Some remark will not require source and destination fields.
permit ip host 10.1.10.1 any
no ip routing vrf MGMT
!
ip route vrf MGMT 0.0.0.0/0 192.168.200.5
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -88,13 +88,6 @@ interface Management1
no shutdown
vrf MGMT
ip address 192.168.200.119/24
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
15 deny ip any host 10.1.10.1
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
remark Some remark will not require source and destination fields.
permit ip host 10.1.10.1 any
no ip routing vrf MGMT
!
ip route vrf MGMT 0.0.0.0/0 192.168.200.5
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -118,13 +118,6 @@ interface Vlan4091
mtu 1500
no autostate
ip address 10.255.252.26/31
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
15 deny ip any host 10.1.10.1
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
remark Some remark will not require source and destination fields.
permit ip host 10.1.10.1 any
no ip routing vrf MGMT
!
mlag configuration
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -118,13 +118,6 @@ interface Vlan4091
mtu 1500
no autostate
ip address 10.255.252.27/31
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
15 deny ip any host 10.1.10.1
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
remark Some remark will not require source and destination fields.
permit ip host 10.1.10.1 any
no ip routing vrf MGMT
!
mlag configuration
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -185,13 +185,6 @@ interface Vxlan1
vxlan vlan 451 vni 40451
vxlan vlan 452 vni 40452
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
15 deny ip any host 10.1.10.1
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
remark Some remark will not require source and destination fields.
permit ip host 10.1.10.1 any
!
ip routing
no ip routing vrf MGMT
!
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -137,13 +137,6 @@ interface Management1
no shutdown
vrf MGMT
ip address 1.1.1.2
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
15 deny ip any host 10.1.10.1
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
remark Some remark will not require source and destination fields.
permit ip host 10.1.10.1 any
no ip routing vrf MGMT
!
ip route vrf MGMT 0.0.0.0/0 1.1.1.1
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -137,13 +137,6 @@ interface MY_INTERFACE_FABRIC
no shutdown
vrf MGMT
ip address 1.1.1.2
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
15 deny ip any host 10.1.10.1
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
remark Some remark will not require source and destination fields.
permit ip host 10.1.10.1 any
no ip routing vrf MGMT
!
ip route vrf MGMT 0.0.0.0/0 1.1.1.1
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -142,13 +142,6 @@ interface MY_INTERFACE_HOST
!
hardware tcam
system profile vxlan-routing
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
15 deny ip any host 10.1.10.1
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
remark Some remark will not require source and destination fields.
permit ip host 10.1.10.1 any
no ip routing vrf MGMT
!
ip route vrf MGMT 0.0.0.0/0 1.1.1.1
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -142,13 +142,6 @@ interface Management0
!
hardware tcam
system profile vxlan-routing
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
15 deny ip any host 10.1.10.1
!
ip access-list TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
remark Some remark will not require source and destination fields.
permit ip host 10.1.10.1 any
no ip routing vrf MGMT
!
ip route vrf MGMT 0.0.0.0/0 1.1.1.1
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -454,21 +454,6 @@ router_bfd:
interval: 1200
min_rx: 1200
multiplier: 3
ip_access_lists:
- name: TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
entries:
- sequence: 15
action: deny
protocol: ip
source: any
destination: 10.1.10.1
- name: TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
entries:
- remark: Some remark will not require source and destination fields.
- action: permit
protocol: ip
source: 10.1.10.1
destination: any
ip_igmp_snooping:
globally_enabled: true
vlans:
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -462,21 +462,6 @@ router_bfd:
interval: 1200
min_rx: 1200
multiplier: 3
ip_access_lists:
- name: TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
entries:
- sequence: 15
action: deny
protocol: ip
source: any
destination: 10.1.10.1
- name: TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
entries:
- remark: Some remark will not require source and destination fields.
- action: permit
protocol: ip
source: 10.1.10.1
destination: any
ip_igmp_snooping:
globally_enabled: true
vlans:
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -183,21 +183,6 @@ mlag_configuration:
peer_link: Port-Channel3
reload_delay_mlag: '300'
reload_delay_non_mlag: '330'
ip_access_lists:
- name: TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
entries:
- sequence: 15
action: deny
protocol: ip
source: any
destination: 10.1.10.1
- name: TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
entries:
- remark: Some remark will not require source and destination fields.
- action: permit
protocol: ip
source: 10.1.10.1
destination: any
ip_igmp_snooping:
globally_enabled: true
vlans:
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -183,21 +183,6 @@ mlag_configuration:
peer_link: Port-Channel3
reload_delay_mlag: '300'
reload_delay_non_mlag: '330'
ip_access_lists:
- name: TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
entries:
- sequence: 15
action: deny
protocol: ip
source: any
destination: 10.1.10.1
- name: TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
entries:
- remark: Some remark will not require source and destination fields.
- action: permit
protocol: ip
source: 10.1.10.1
destination: any
ip_igmp_snooping:
globally_enabled: true
vlans:
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -212,21 +212,6 @@ mlag_configuration:
peer_ip: 192.168.200.114
vrf: MGMT
dual_primary_detection_delay: 5
ip_access_lists:
- name: TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
entries:
- sequence: 15
action: deny
protocol: ip
source: any
destination: 10.1.10.1
- name: TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
entries:
- remark: Some remark will not require source and destination fields.
- action: permit
protocol: ip
source: 10.1.10.1
destination: any
ip_igmp_snooping:
globally_enabled: true
vlans:
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -212,21 +212,6 @@ mlag_configuration:
peer_ip: 192.168.200.113
vrf: MGMT
dual_primary_detection_delay: 5
ip_access_lists:
- name: TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
entries:
- sequence: 15
action: deny
protocol: ip
source: any
destination: 10.1.10.1
- name: TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
entries:
- remark: Some remark will not require source and destination fields.
- action: permit
protocol: ip
source: 10.1.10.1
destination: any
ip_igmp_snooping:
globally_enabled: true
vlans:
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -131,21 +131,6 @@ vlans:
- id: 161
name: Tenant_A_NFS
tenant: Tenant_A
ip_access_lists:
- name: TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
entries:
- sequence: 15
action: deny
protocol: ip
source: any
destination: 10.1.10.1
- name: TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
entries:
- remark: Some remark will not require source and destination fields.
- action: permit
protocol: ip
source: 10.1.10.1
destination: any
ip_igmp_snooping:
globally_enabled: true
vlans:
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -131,21 +131,6 @@ vlans:
- id: 161
name: Tenant_A_NFS
tenant: Tenant_A
ip_access_lists:
- name: TEST-IPV4-ACL-WITH-IP-FIELDS-IN_Vlan110
entries:
- sequence: 15
action: deny
protocol: ip
source: any
destination: 10.1.10.1
- name: TEST-IPV4-ACL-WITH-IP-FIELDS-OUT_Vlan110
entries:
- remark: Some remark will not require source and destination fields.
- action: permit
protocol: ip
source: 10.1.10.1
destination: any
ip_igmp_snooping:
globally_enabled: true
vlans:
Expand Down
Loading

0 comments on commit f1685dd

Please sign in to comment.