Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
356
Views
0
Helpful
2
Replies

Filtering MPLS traffic through a PIX?

rob.floyd
Level 1
Level 1

‎07-01-2007 06:02 PM - edited ‎03-11-2019 03:38 AM

I have an MPLS connection running through a pix (7.1.1) running in transparent mode but am unable to filter any of the MPLS traffic. I can ping and telnet through the pix but never see anything in my logs or connection table apart from the UDP/711 and BGP/179 traffic. Is there a way to have the pix filter MPLS-unicast traffic? I have 2 ACL's applied one that permits all ip/icmp and another to allow the MPLS-Unicast ethertype to pass. Any guidance would be greatly appreciated.

Thanks,

Rob Floyd

Labels:
0 Helpful
2 Replies 2

bstremp
Level 2
Level 2

‎07-06-2007 08:28 AM

Try this:

use EtherType ACE, eg..

hostname(config)# access-list ETHER ethertype deny mpls-unicast.

0 Helpful

rob.floyd
Level 1
Level 1
In response to bstremp

‎07-06-2007 09:35 AM

I got confirmation that what I was attempting to do is not supported. I want to allow the MPLS unicast through but want to filter higher up the stack into specific VRF's. Not supported at this time.

Thanks,

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card