Skip to content

srl-labs/srl-acl-lab

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
.devcontainer
.devcontainer
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
acl.clab.yml
acl.clab.yml
 
 
icmp_drop.cfg
icmp_drop.cfg
 
 
srl.cfg
srl.cfg
 
 
sshx
sshx
 
 

Repository files navigation

Access Control Lists on SR Linux

Get to know ACLs on SR Linux

Run this lab in GitHub Codespaces for free.
Learn more about Containerlab for Codespaces.
Machine type: 2 vCPU · 8 GB RAM

After lab is started the following ping should succeed, as there is no default ACL in place.

sudo docker exec -i -t acl-client ping -w 2 -c 2 192.168.20.100

Then configure the ACL on ethernet-1/1.0 subinterface of SR Linux to drop ICMP packets destined towards the server:

cat icmp_drop.cfg | docker exec -i acl-srl sr_cli -e -c

Repeat the ping, it should not succeed, as the ICMP drop ACL is in place. You can check the logs on SR Linux to ensure that the packets are being dropped:

sudo docker exec acl-srl sr_cli show system logging file acl_log

About

Get to know ACLs on SR Linux

Topics

codespaces srlinux clab-topo

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

2 stars

Watchers

4 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published