cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
252
Views
0
Helpful
1
Replies

MAC extended ACL

binhkdinh
Level 1
Level 1

Software Version: 12.1(19)EA1d

Problem Details: I'm testing the MAC extended ACL feature on our 3560

switch (sw 12.1(19)EA1d). It appears that it's working properly for the

PC's with MAC addresses permitted in the ACL. However, when I try to

connect a PC with MAC that is not in the "permit" ACL, the PC is able

to get an IP address from our DHCP server. Can you help with this?

======================

mac access-list extended MAC_ACL

permit host abcd.abcd.abcd any

permit host abcd.abcd.abcc any

!

interface fa0/26

switchport access vlan 2

switchport mode access

no ip address

no mdix auto

power inline never

mac access-group MAC_ACL in

spanning-tree portfast

!

Thanks

Binh

1 Reply 1

aghaznavi
Level 5
Level 5

Named MAC extended ACLs can not be applied to L3 interfaces.

Define extended MAC ACLs to define the interesting traffic for the VLAN maps.

Switch(config)# mac access-list extended denyIPXACL

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: