Ip access list for L2 interface

Answered Question
Feb 12th, 2009

Simple question:

Is it possible to apply an ip access list to a Layer2 switchport configured as a trunk?

I have this problem too.
0 votes
Correct Answer by Tshi M about 7 years 11 months ago

I haven't done this but here is what i found:

"When applied to a trunk port, the ACL filters traffic on all VLANs present on the trunk port. When applied to a port with voice VLAN, the ACL filters traffic on both data and voice VLANs."

http://www.ciscopress.com/articles/article.asp?p=1181682&seqNum=4

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
fgasimzade Thu, 02/12/2009 - 05:13

Thank you!

Another question: is it possible to apply a policy-map configured with ACL to a trunk port?

fgasimzade Thu, 02/12/2009 - 05:19

This is what I found:

Unlike regular Cisco IOS standard or extended ACLs that are configured on router interfaces only and are applied on routed packets only, VACLs apply to all packets and can be applied to any VLAN or WAN interface.

It seems it doesnt to right with

"When applied to a trunk port, the ACL filters traffic on all VLANs present on the trunk port. When applied to a port with voice VLAN, the ACL filters traffic on both data and voice VLANs."

Actions

This Discussion