Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

ACL Woes - Please help !!!!

Here is the scenario.

Vlan 1 - 192.168.0.1/255.255.255.0

Vlan 2 - 192.168.3.1/255.255.255.0

Vlan 1 - Office LAN Traffic

Vlan 2 - Public access

Vlan2 has Cisco 1130AG AP running on it, sending through to 192.168.3.0 for the DHCP (2 pools setup, one for each Vlan)

Trying to create ACL to permit data flow between Vlan1 and Vlan2, but to preserve flow of traffic outbound to the next hop (WAN) for each Vlan (which currently works).

For some reason, my ACL I think is stopping the DHCP pool for Vlan2 (where the 1130 AP is located) from releasing leases to these clients, as if I completely disassociate the ACL with the interfaces, everything works fine ? I might have a directional problem with the ACL, but I am SURE this is easy problem for someone to suggest a fix.. look forward to a response.

Jeff

1 REPLY
Cisco Employee

Re: ACL Woes - Please help !!!!

Hi Jeff,

DHCP is using broadcast (255.255.255.255) and UDP 67 for server port and UDP 68 as client port. Please add the following two lines in front of the rest of your ACL and it should work:

access-list 103 permit udp any any eq bootpc

access-list 103 permit udp any any eq bootps

HTH,

jerry

114
Views
0
Helpful
1
Replies
CreatePlease to create content