There are two different mechanisms in VPP which you can use: 1) classifier-based ACLs https://wiki.fd.io/view/VPP/Introduction_To_N-tuple_Classifiers
It is faster than acl plugin, and allows only stateless operation which is essentially bitmask-based. 2) acl plugin https://wiki.fd.io/view/VPP/SecurityGroups Supports higher-level semantics, can parse through IPv6 extension headers, allows for a lightweight session tracking by specifying "permit+reflect" as action, but is slower than the classified based operation. The ACL plugin is configured via API-only, there are only show commands in the debug CLI aimed for debugging/troubleshooting. --a > On 8 Jul 2017, at 02:24, Yuliang Li <yuliang...@yale.edu> wrote: > > Hi, > > Does anyone knows how to configure ACL in vpp? Is there any document? > > Thanks, > -- > Yuliang Li > PhD student > Department of Computer Science > Yale University > _______________________________________________ > vpp-dev mailing list > vpp-dev@lists.fd.io > https://lists.fd.io/mailman/listinfo/vpp-dev
_______________________________________________ vpp-dev mailing list vpp-dev@lists.fd.io https://lists.fd.io/mailman/listinfo/vpp-dev
