Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

2948G-L3 VLAN Access Lists

Can a 2948G-L3 support VLAN access lists? If not, is there a way to control access between VLANs without using VLAN access lists?

Thanks

2 REPLIES

Re: 2948G-L3 VLAN Access Lists

The 2948G-L3 runs router-like IOS so think of it as a 48 port router. There are no switchport, etc commands or VLAN commands. You configure each interface seperatly and can tie multiple ports together with a bridge-group and BVI, etc or just make each interface a routed interface.

So, you would use normal router access-lists on the 2948G-L3 interfaces.

Cisco Employee

Re: 2948G-L3 VLAN Access Lists

You can check this on CCO in the documentation for the 2948G-L3

http://www.cisco.com/univercd/cc/td/doc/product/l3sw/4908g_l3/ios_12/18w522a/config/acl_cnfg.htm#xtocid283371

Keep the following restrictions in mind when configuring ACLs on the Catalyst 2948G-L3 and 4908G-L3 switch routers:

ACLs are supported only on Gigabit Ethernet ports and corresponding Gigabit Ethernet subinterfaces.

ACLs are not supported on Bridge-Group Virtual Interface (BVI), Fast EtherChannel (FEC), Gigabit EtherChannel (GEC), and Fast Ethernet interfaces.

Reflexive and dynamic ACLs are not supported on Catalyst 2948G-L3 and 4908G-L3 switch routers.

Access violations accounting is not supported on Catalyst 2948G-L3 and 4908G-L3 switch routers.

ACL logging is supported only for packets going to the CPU, not for switched packets.

200
Views
0
Helpful
2
Replies
CreatePlease to create content