Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
346
Views
0
Helpful
1
Replies

vlan access-map and server switch and workstation switch

Go to solution
Jan Rockstedt
Level 1
Level 1

‎05-22-2008 05:43 AM - edited ‎03-05-2019 11:09 PM

Hi,

We have created a access-map on our VTP server switch, see below.

How do we get this list over to our VTP workstation switches?

The VLAN is working on the workstation VTP switches, but the access-map is not ok.

The trunk port have been setup with:

switchport trunk encapsulation dot1q

switchport trunk allowed vlan 2-409

switchport mode trunk

udld port

The spanning-tree config:

spanning-tree mode rapid-pvst

spanning-tree extend system-id

vlan access-map WLAN-GUEST 10

action forward

match ip address Guest-ACL-AP-10

vlan access-map WLAN-GUEST 20

action drop

match ip address Guest-ACL-AP-20

vlan access-map WLAN-GUEST 30

action forward

match ip address Guest-ACL-AP-30

ip access-list extended Guest-ACL-AP-10

remark This is a vlan ACL-map to Cisco Access Point for guest

permit udp 10.10.9.0 0.0.0.255 host 10.12.1.41 eq bootpc

permit udp 10.10.9.0 0.0.0.255 host 10.12.1.41 eq bootps

permit udp 10.10.9.0 0.0.0.255 host 10.12.1.42 eq bootpc

permit udp 10.10.9.0 0.0.0.255 host 10.12.1.42 eq bootps

ip access-list extended Guest-ACL-AP-20

remark This is a vlan ACL-map to Cisco Access Point for guest

deny ip 10.102.9.0 0.0.0.255 10.0.0.0 0.255.255.255

deny ip 10.102.9.0 0.0.0.255 172.20.0.0 0.0.255.255

ip access-list extended Guest-ACL-AP-30

remark This is a vlan ACL-map to Cisco Access Point for guest

permit ip any any

vlan filter WLAN-GUEST vlan-list 9

//Jan

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
didyap
Level 6
Level 6

‎05-28-2008 08:22 AM

Here is the URL for the configuration for the VLAN Access map which will help you :

http://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/release/12.2_35_se/configuration/guide/swacl.html#wp1600210

Also refer the following link for the workstation connectivity :

http://www.cisco.com/en/US/products/hw/switches/ps700/products_tech_note09186a00800b1500.shtml

View solution in original post

0 Helpful
1 Reply 1

Go to solution
didyap
Level 6
Level 6

‎05-28-2008 08:22 AM

Here is the URL for the configuration for the VLAN Access map which will help you :

http://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/release/12.2_35_se/configuration/guide/swacl.html#wp1600210

Also refer the following link for the workstation connectivity :

http://www.cisco.com/en/US/products/hw/switches/ps700/products_tech_note09186a00800b1500.shtml

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card