Solved

What does this mean in a Cisco Switch Config?

Posted on 2013-12-23
3
909 Views
Last Modified: 2013-12-23
We are upgrading from a 3550 to a 3750 switch, and the only thing in the config I don't understand is this.

3550
ip access-list extended CMP-NAT-ACL
 dynamic Cluster-HSRP deny   ip any any
 dynamic Cluster-NAT permit ip any any

Open in new window


If I try to enter it into the 3750 I get this error.
% Only one dynamic entry can be configured per ACL.

Open in new window

and the config is saved at this.
ip access-list extended CMP-NAT-ACL
 dynamic Cluster-HSRP deny   ip any any

Open in new window


What does this policy do?  What should it be?
0
Comment
Question by:pamsauto
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 15

Expert Comment

by:WalkaboutTigger
ID: 39736716
So the first place I would point you to is this Cisco article on HSRP with a 3560 switch -
http://www.cisco.com/en/US/docs/switches/lan/catalyst3560/software/release/12.2_52_se/configuration/guide/swhsrp.html

and its corresponding document for the 3750
http://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/release/12.2_55_se/configuration/guide/swhsrp.html

Are you using HSRP?
0
 

Author Comment

by:pamsauto
ID: 39736727
We only have one internet connection, so I would say no to using HSRP.
0
 
LVL 15

Accepted Solution

by:
WalkaboutTigger earned 500 total points
ID: 39736738
Then, in my opinion, you can completely ignore this bit of the configuration unless there are other bits of the ACL you need.

But if you're not using HSRP, you can ignore the dynamic entries listed in your question.
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

For many of us, the  holiday season kindles the natural urge to give back to our friends, family members and communities. While it's easy for friends to notice the impact of such deeds, understanding the contributions of businesses and enterprises i…
You deserve ‘straight talk’ from your cloud provider about your risk, your costs, security, uptime and the processes that are in place to protect your mission-critical applications.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question