Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

VACL problems with DHCP


I configuted a 3 vlans, vlan 10,vlan 20 and 30

the vlan 10 have the dhcp server, and every vlan had ip helper-address, everythings wotks fine,but when a aplied VACL to restrics some comunications between vlans, the computers dont get the ip address from de dhcp, this is my configuration:

ip access-list standard lista

permit any

permit ip any

permit ip

permit ip


vlan access-map intervlan_map

match ip address lista

action forward


vlan filter intervlan_map vlan-list 20-30

i granted everithig i want , the vlans 20 y 30 cant comunicate between them but can communicate with vlan 10, and the vlan 10 can communicate with vlan 20 y 30, everything works fine but the pc of the vlan 20 and 30 cant get ip address from the server of the vlan 10 but they can ping to the server, i dont understand why cant get ipn address, pls help.

New Member

Re: VACL problems with DHCP

first you have to check if the directed DHCP broadcast is received by the DHCP server.

when you havent configured VACL, what ip address/segment were assigned by the DHCP on vlan 10, 20 and 30?