05-13-2007 11:02 PM - edited 03-05-2019 04:02 PM
Dear All,
How can I block a DHCP request on cisco 2950 switches, I tried given below access list but it was not working so plz suggest
interface FastEthernet0/4
no ip address
ip access-group 102 in
!
Extended IP access list 102
deny udp host 10.12.14.120 any eq bootpc
permit ip any any
IOS : Version 12.1(19)EA1c,
Thank you in anticipation,
Regards,
Dipak
05-21-2007 06:05 AM
The access-list which you have created is correct except the tu need to add one more statement to the list
access-list 102 deny udp any host 10.12.14.120 any eq 67
access-list 102 deny udp any host 10.12.14.120 any eq 68
05-21-2007 06:09 AM
Gabriel
The syntax that you suggest may be better but it does not address the problem of trying to assign an IP access list to an interface that is not processing IP. I do not believe that you can do this filtering on a 2950 layer 2 switch.
HTH
Rick
05-21-2007 06:13 AM
depending on the switch IOS, you can filter layer3/4 information on the 2950 on an interface that is not processing IP itself.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide