mac access-list problems

Unanswered Question
May 5th, 2009
User Badges:

I have a Cisco 3550 installed. I'm using IP and MAC access-lists. The IP Access-lists are working like they should. However the MAC Access-list seams to have issues with applications.

The mac access-list are setup to allow traffic from a couple of MAC Addresses to a single MAC Address. The mac access-list is then added to the FastEthernet interface.

Pings and normal file access don't seem to have issues with the mac access-list, however any program that pulls data from the server across that mac access-list will time out after about 10 minutes of sitting ilde. I've changed the mac-access-list aging-time to 0 to disable it. However the problems still persist.

Can anyone shed some light on why this is happening?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
dansimhhua Tue, 05/05/2009 - 21:40
User Badges:

disappointing...ask this question on many bbs, nobody help,cisco neither.

route2null Tue, 05/05/2009 - 23:02
User Badges:

If you remove the ACL does the problem persist? Meaning, are you sure the ACL is the root cause?


dansimhhua Wed, 05/06/2009 - 21:44
User Badges:

Thanks, James.

Sure, no such problem before adding the ACL. after removed the ACL, then the problem disappear.

dansimhhua Wed, 05/06/2009 - 21:48
User Badges:

the ACL is following as below,

mac access-list extended HR

permit host 0000.0000.0001 host 0000.0000.0001

permit host 0000.0000.0001 host 0000.0000.0002

fa 0/22:mac access-group hr in

dansimhhua Wed, 05/06/2009 - 21:56
User Badges:

Sorry, the ACL is,

permit host 0000.0000.0001 host 0000.0000.0002

permit host 0000.0000.0001 host 0000.0000.0003

fa 0/22:mac access-group hr in


This Discussion