Forum Discussion
k_kirchev_28437
Nimbostratus
NimbostratusImport Cisco ACL(2000+ rows) from Cisco ACE to F5
Hello guys,
through last few months I have been looking for scenario how to upload/implement/import Cisco ACL to F5. I have been looking here and found like 5,10 Cisco ACLs articles but none of ...
k_kirchev_28437Nimbostratus
NimbostratusHello Guys,
 
I appreciate your answers very much!
 
I found something for AFM here :
 
https://devcentral.f5.com/s/feed/0D51T00006j31onSAA
 
But for me it seems little bit tough because I have to define every single object(host or network) and every single port. This seems TONS of writing and big changes of mistakes unfortunately.
 
Also just a quick example:
 
apm acl PERMIt-LB { entries { { action allow dst-end-port https dst-start-port https dst-subnet 10.0.168.32/32 protocol 6 src-subnet 0.0.0.0/0 } } }
 
This way through APM seems much easier when I have to edit port/host/subnet etc. Of course again big chance of errors while writing 2000 ACL entries.