I'm quite new to ACL's so fogive any errors.
I am currently trying to get Wake on LAN working in our enviroment to allow SCCM 2007 to wake computers. I have configured the ACL's to allow the packets across VLANS.
I followed the CISCO guide
http://www.cisco.com/en/US/products/hw/switches/ps5023/products_configuration_example09186a008084b55c.shtml and it works, but i am concerned that i have left the security to open.
First i allowed the server in an ACL entry
permit udp host 192.168.99.x eq 7
then i allowed fowarding of WOL packets in broadcasts.
Then on the VLAN interface i got a bit stuck. in the guide it says to input the ACL number after. however i use ACL names and i cannot add the name.
ip directed-broadcast ACLNumber
It WORKS great if i simply don't put the ACL number, but i fear that this is to "Open".
Any advice greatly appreciated!
Per the command reference, only numbered ACLs can be given as an argument to the 'ip directed-broadcast' command, so you'll need to use config like:
access-list 101 permit udp host 192.168.1.x any eq 7
ip directed-broadcast 101
I didn't find any pending enhancements to allow named ACLs at this time.