Comware Based
cancel
Showing results for 
Search instead for 
Did you mean: 

5500 ACL Strange Problem

acalligher
Occasional Visitor

5500 ACL Strange Problem

Hello



On a stackable 5500G (2x), I'm trying to apply a Vlan ACL with many rules, but I have found the following problem:



- Not all rules are applied on the ports!



> Applying Acl 3002 rule 22 failed! Reason: Resource unavailable!(GigabitEthernet1/0/19)



When I check the "display drv-module qacl qacl_resource" I don't see spare-rule problems



The same config on a similar switch (same software but just 1 module) don't show problem.





>>>>Config commands:



packet-filter vlan 2 inbound ip-group 3002



acl number 3002

description ACL_Vlan2

acl number 3002 match-order config



rule 1 permit ip source 172.16.16.0 0.0.7.255 destination any

rule 11 deny ip source 172.16.16.0 0.0.1.255 destination 172.16.16.0 0.7.255.255

rule 12 permit ip source 172.16.16.0 0.0.1.255 destination 172.16.50.131 0

rule 21 deny ip source 172.16.13.0 0.0.0.255 destination any

rule 22 permit ip source 172.16.13.0 0.0.0.255 destination 172.16.1.19 0

rule 901 permit ip source 172.16.16.0 0.0.7.255 destination 172.16.50.134 0



interface GigabitEthernet1/0/19

stp loop-protection

stp compliance legacy

port link-type trunk

undo port trunk permit vlan 1

port trunk permit vlan 2 to 3 6 201 211 251 299

port trunk pvid vlan 299

broadcast-suppression pps 3000

undo jumboframe enable

packet-filter inbound ip-group 3002 rule 1

packet-filter inbound ip-group 3002 rule 11

packet-filter inbound ip-group 3002 rule 12

description trunk

apply qos-profile default

#





Did someone encurred into the same problem?



It's a stack problem?



best regards

Andrea

This message was edited by acalligher on 9-15-09 @ 4:05 AM
1 REPLY
gsilva
Occasional Visitor

Re: 5500 ACL Strange Problem

I´m having the same problem. : (