Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
306
Views
0
Helpful
3
Replies

why my mac vlan acl not work fine

mike.cao
Level 1
Level 1

‎08-29-2006 07:45 PM - edited ‎03-03-2019 04:44 AM

This is my config:

mac access-list extended maccon

permit host ?.?.?.? any

permit any host ?.?.?.?

vlan access-map mac_access 10

match mac address maccon

action forward

vlan filter mac_access vlan-list 30

inter vlan 30

mac packet-classify

I have 50 desktop pc。45 of them work fine.BUT 5 of them can't ping some of other network address.why?

Labels:
0 Helpful
3 Replies 3

jackyoung
Level 6
Level 6

‎08-29-2006 11:31 PM

Are the 45 PC work randomly or fixed 45 PC work but remining 5 not ?

If not, are the 5 PC belong to the lowest mac access-list location ?

Can you tell the switch model and sw ver. ?

0 Helpful

mike.cao
Level 1
Level 1
In response to jackyoung

‎08-31-2006 02:03 AM

5 pc work not randomly,it's fixed.They are not belong to the lowest mac access-list location.

switch:catalyst 6509

IOS:12.2(18)sxd7

0 Helpful

jackyoung
Level 6
Level 6
In response to mike.cao

‎08-31-2006 05:12 PM

I am not sure did you enable the mac-address-table limit per vlan. Can you check the result of "show mac-address-table limit" ?

If there is limit, try "mac-address-table limit vlan 50 maximum n", where the n is the max. max address in the VLAN 30.

Lnik here FYI :

http://www.cisco.com/en/US/products/hw/switches/ps708/products_command_reference_chapter09186a00801eaed6.html#wp1643725

If you do not have the limitation on it, then I have no idea on the configuration, you may need to try to upgrade the IOS for test. Or check w/ Cisco to determine any bug related to this limitation.

Hope this helps.

0 Helpful
Customers Also Viewed These Support Documents