Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

MAC-based ACL in wireless router

Hi,

I have a AIR-AP1262N wireless rotuer. I have implemented many mac based ACL in it. A sample looks like this.

access-list 715 permit 6427.37e0.8379   0000.0000.0000

access-list 715 permit e006.e933.901d   0000.0000.0000

access-list 715 permit 88cb.8278.40e8   0000.0000.0000

access-list 715 permit 6427.37e0.d1ng   0000.0000.0000

access-list 715 deny   0000.0000.0000   ffff.ffff.ffff

Now what ever new mac I want to allow, the acl that I configure is going below the deny rule and it is not working.

Is there any way to move it before the deny rule or should I delete the whole config and re-enter it every time.

  • Security and Network Management
4 REPLIES

Re: MAC-based ACL in wireless router

You would need to call the line number in the ACL to insert it above.

So if you rewrite the ACL and call the dent as 100 , you would be able to add above it

Steve

Sent from Cisco Technical Support iPhone App

HTH, Steve ------------------------------------------------------------------------------------------------ Please remember to rate useful posts, and mark questions as answered

Re: MAC-based ACL in wireless router

Type Show Ip access-list and check the line number above which you want to enter the new conditional statement and then use ip access-list command with line number to insert it above as explained by Stephen.

New Member

Re: MAC-based ACL in wireless router

Thank you Stephen and Ravi.

But this is a mac based ACL. So when you tye in sh ip access-list, this will not show the resuls with line number.

Re: MAC-based ACL in wireless router

Please try the below commands and update that it is working or not

show mac access-lists name

and then

resequence mac access-list name starting-sequence-number increment/decrement

273
Views
0
Helpful
4
Replies
This widget could not be displayed.