Ip access list for L2 interface

Answered Question
Feb 12th, 2009
User Badges:

Simple question:


Is it possible to apply an ip access list to a Layer2 switchport configured as a trunk?

Correct Answer by Tshi M about 8 years 3 months ago

I haven't done this but here is what i found:

"When applied to a trunk port, the ACL filters traffic on all VLANs present on the trunk port. When applied to a port with voice VLAN, the ACL filters traffic on both data and voice VLANs."


http://www.ciscopress.com/articles/article.asp?p=1181682&seqNum=4

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
fgasimzade Thu, 02/12/2009 - 05:13
User Badges:

Thank you!


Another question: is it possible to apply a policy-map configured with ACL to a trunk port?

fgasimzade Thu, 02/12/2009 - 05:19
User Badges:

This is what I found:


Unlike regular Cisco IOS standard or extended ACLs that are configured on router interfaces only and are applied on routed packets only, VACLs apply to all packets and can be applied to any VLAN or WAN interface.


It seems it doesnt to right with


"When applied to a trunk port, the ACL filters traffic on all VLANs present on the trunk port. When applied to a port with voice VLAN, the ACL filters traffic on both data and voice VLANs."


Actions

This Discussion