I need to block and allow certain MAC addresses to a particular interface on a Catalyst 4506 switch. I created an extended MAC access-list and applied it to an interface however it doesn't work.
Can you have both IP extended ACLs and MAC extended ACLs on the same switch?
Do I have to apply it to a vlan also?
ACLs are generally pretty straight forward, what am I missing? Any help would be greatly apprecaited. Thanks.
mac access-list extended macacl
permit host abcd.abcd.abcd host efgh.efgh.efgh
deny any any
mac access-group macacl in