Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
461
Views
5
Helpful
1
Replies

Cisco SGT ACL and Trustsec on switches

carl_townshend
Spotlight
Spotlight

‎01-05-2023 12:17 AM

Hi Guys

I have some questions around SG ACLs and Trustsec

1.We have a mix of 9200 / 9300 / 2960X / 2960CX / 4500x switches, do these support SGT, inline taging, SXP and SGACLs ?

2.Is there a limitation to the size of SGACL we can use on the switches? We were going to use normal ACLs with our third party NAC solution to try and do some kind of segmentation policies, however there were certain TCAM limitations, so we did not do this, are these same limitations there when using SGACLs, or are they more efficient?

3.Has anyone successfully used a third party solution to assign SGTs etc?

Cheers

Carl

Labels:
1 Reply 1

balaji.bandi
Hall of Fame
Hall of Fame

‎01-05-2023 12:32 AM

1. You can find the Matrix here with IOS code required as base to work SGT/SXP :

https://www.cisco.com/c/dam/en/us/solutions/collateral/enterprise-networks/trustsec/software-system-bulletin.pdf

2. you can find this information based on the device models

3. I have not tried it - as long as they are standards that should work technically - if you using 3rd party their document can explain how to use it.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents