Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

How to combine MAC and IP ACL in Catalyst 3550

I wannt to permit forwarding on Catalyst 3550 only if IP address is used with specific MAC address. Something like:

permit ip x.x.x.x mac x.x.x.x.x.x any

deny ip any any

So if user changes his ip address to not be abble to use network. How to accomplish this? Thanks in advance

3 REPLIES
Cisco Employee

Re: How to combine MAC and IP ACL in Catalyst 3550

MAC access lists are for non-IP traffic only and IP access lists for IP traffic only. You can't combine them. IP traffic can't be subject of MAC access list, only non-IP traffic can.

Community Member

Re: How to combine MAC and IP ACL in Catalyst 3550

Thanks. I will try to accomplish this with static arp and some kind of IP ACL. But it will be good if in the future MAC and IP ACL can be used together.

Bronze

Re: How to combine MAC and IP ACL in Catalyst 3550

Is this the case for the 2950's as well? The access list documentation doesn't say anything about MAC addresses being restricted to non-IP traffic that I can see.

Thanks,

Terry

171
Views
0
Helpful
3
Replies
CreatePlease to create content