The Verify operation lets you compare the ACLs from selected devices against the current ACLs defined in the ACL Manager database. When the Verify operation detects a mismatch between ACLs, the ACL Verification Results window opens where you can view the differences between the selected device's active configuration and the model in ACL Manager.
The window consists of three panels. The top panel lists the interfaces where
there are differences between the ACLs. When an interface is selected from the top list, the lower-right panel shows the ACLs
applied to the interface in the device (Device ACL) and the lower-left panel shows the ACLs for the interface that are
stored in the ACL Manager database (Model ACL). Differences between the Device
ACL and Model ACL are highlighted by a red
exclamation mark (
).
Click areas in the window for more information.
- Select device from list:
- This drop-down list contains all of the devices where ACL Manager detected a difference between the ACLs in a device's active configuration and the ACLs applied to that device in ACL Manager's database. The drop-down list lets you select from the list of devices and show the particular targets in the Target table.
- Target Table
- This table lists the targets where there are differences between the ACL definitions in ACL Manager and the ACLs applied in the selected device.
- Model ACL Table
- This table lists the rules defined in the ACL Manager database for the currently selected ACL and uses a red exclamation mark (!) to indicate those that are different from the rules in the ACL applied on the device .
- Device ACL Table
- This table lists the rules defined in the device for the currently selected ACL and uses a red exclamation mark (!) to indicate those that are different from the rules defined in ACL Manager's database.
- Verify Devices in List
- During the verification process, if you edit or delete rules in an ACL, use this button to update the ACL Verification Results Window. It reads the ACLs currently in effect (enforced) on all the devices on the device list and compares them against the ACLs you have defined in the ACL Manager database. Interfaces where there are differences are listed in the Target table. Interfaces where the differences have been resolved are removed from the list. When no differences exist, the ACL Verification Results window is closed.
- Go to ACL
- Clicking this button opens the ACL Editor with the target ACL selected.
- Go to Rule
- Clicking this button opens the ACL Editor with the database rule selected.
- Import This Definition
- Copies the rules from the Device ACL table into the Model ACL table. Clicking this button opens the Import This Definition window where you can specify certain options for the import. After importing the ACL definition from the device, the Model ACL and Device ACL tables are the same and verifying ACLs again will result in the interface from which the ACL definitions were imported, no longer appearing in the interface table at the top of the window.
For information on related tasks: