Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Filtering MPLS traffic through a PIX?

I have an MPLS connection running through a pix (7.1.1) running in transparent mode but am unable to filter any of the MPLS traffic. I can ping and telnet through the pix but never see anything in my logs or connection table apart from the UDP/711 and BGP/179 traffic. Is there a way to have the pix filter MPLS-unicast traffic? I have 2 ACL's applied one that permits all ip/icmp and another to allow the MPLS-Unicast ethertype to pass. Any guidance would be greatly appreciated.

Thanks,

Rob Floyd

2 REPLIES
New Member

Re: Filtering MPLS traffic through a PIX?

Try this:

use EtherType ACE, eg..

hostname(config)# access-list ETHER ethertype deny mpls-unicast.

New Member

Re: Filtering MPLS traffic through a PIX?

I got confirmation that what I was attempting to do is not supported. I want to allow the MPLS unicast through but want to filter higher up the stack into specific VRF's. Not supported at this time.

Thanks,

150
Views
0
Helpful
2
Replies
CreatePlease to create content