Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Configure access-list Vlan...

I have a Switch Cisco c2924MXL and I'd like to configure a ACL so a determined door or VLAN don't have trafic in the door 80 WWW

I created the follow acl

access-list 101 deny ip host 192.168.0.145 any eq 80

but I can't include in the interface, he doesn't accept the command

Switch(config-if)#ip access-group 101 in

Is there any possibility to do that in this switch ? And if it's possible I'd like to put it also in the band control of the door.

Thanks

MCM

2 REPLIES
ovt Bronze
Bronze

Re: Configure access-list Vlan...

No, not on this model.

Re: Configure access-list Vlan...

Hi,

The 2924 is a pure layer 2 switch and does not support Access-list. You should try the same access-list on the corresponding layer 3 interface. Make sure you have a permit ip any any command at the end to allow rest of the traffic

THe new 2960 switches do support ACL on the interface but requires consistenet mask options and i think can be set in the outbound direction only

HTH, rate if it does

Narayan

260
Views
0
Helpful
2
Replies