Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
286
Views
0
Helpful
1
Replies

ACL Woes - Please help !!!!

alpineclubIT
Level 1
Level 1

‎06-23-2009 02:08 PM - edited ‎03-06-2019 06:25 AM

Here is the scenario.

Vlan 1 - 192.168.0.1/255.255.255.0

Vlan 2 - 192.168.3.1/255.255.255.0

Vlan 1 - Office LAN Traffic

Vlan 2 - Public access

Vlan2 has Cisco 1130AG AP running on it, sending through to 192.168.3.0 for the DHCP (2 pools setup, one for each Vlan)

Trying to create ACL to permit data flow between Vlan1 and Vlan2, but to preserve flow of traffic outbound to the next hop (WAN) for each Vlan (which currently works).

For some reason, my ACL I think is stopping the DHCP pool for Vlan2 (where the 1130 AP is located) from releasing leases to these clients, as if I completely disassociate the ACL with the interfaces, everything works fine ? I might have a directional problem with the ACL, but I am SURE this is easy problem for someone to suggest a fix.. look forward to a response.

Jeff

Labels:
Preview file
3 KB
0 Helpful
1 Reply 1

Jerry Ye
Cisco Employee
Cisco Employee

‎06-23-2009 02:40 PM

Hi Jeff,

DHCP is using broadcast (255.255.255.255) and UDP 67 for server port and UDP 68 as client port. Please add the following two lines in front of the rest of your ACL and it should work:

access-list 103 permit udp any any eq bootpc

access-list 103 permit udp any any eq bootps

HTH,

jerry

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card