I can't seem to get this 3750 to properly filter IPv6 on a VLAN ACL.
Here's what I'm working with. I'm filtering all ethertype 0x86DD which matches IPv6. I'm sniffing traffic leaving this VLAN and I can see that there's IPv6 traffic coming out and it does indeed have this ethertype.
mac access-list extended macl-ipv6
deny any any 0x86DD 0x0
permit any any
vlan access-map vacl-ipv6 10
match mac address macl-ipv6
vlan filter vacl-ipv6 vlan-list 888
I've also tried filtering on destination MAC address 3333.0000.0000 0000.ffff.ffff and that didn't seem to work either. It seems like the 3750 is completely ignoring anything to do with IPv6, as if to spite me for not running the ipv4-and-ipv6 sdm template.
I want this to completely filter out all IPv6, but nothing I'm doing seems to be working. Any guesses? I found a post on c-nsp suggesting that other people have had this problem with the 3750 platform but I'm hoping one of you guys has encountered this.
Oh yeah and I don't want to run the ipv6 sdm template because my particular application requires the vlan template - the ipv6 sdm template doesn't support enough MAC addresses.
Question We run asr9001 with XR 6.1.3, and we have a very long delay to
login w/ SSH 1 or 2 to the device compare to IOS device. After
investigation, the there is 1s delay between the client KEXDH_INIT and
the server (XR) KEXDH_REPLY. After debug ssh serv...
Introduction The purpose of this document is to demonstrate the Open
Shortest Path First (OSPF) behavior when the V-bit (Virtual-link bit) is
present in a non-backbone area. The V-bit is signaled in Type-1 LSA only
if the router is the endpoint of one or ...
Hi, I am seeing quite a few issues with patch install and wanted to
share my experience and workaround to this. Login to admin via CLI, then
access root with the “shell” command Issue “df –h” and you’ll probably
see the following directory full or nearly ...