I am having 3550 switch with vlan3 and vlan5.In vlan3 I have a dhcp server which gives ip add to all the pc's in vlan3 and vlan 5 using ip helper address in vlan5.every thing is working fine. Now I want to block icmp in vlan 5.I tried using access list, it was blocked but my DHCP is not working.
Ip accesslist extened 101
Deny icmp any any
Permit ip any 172.16.5.2(dhcp ip)
Please help me .I want to block icmp in vlan5 and dhcp should also workâ¦
Your access list is attempting to block ICMP and to permit DHCP. But the problem in your access list is that the DHCP request does not come in addressed to the DHCP server but comes in with the destination being the broadcast address.
So Jon's suggestion of permit ip any any would fix the problem or you could permit host 255.255.255.255 and that should also work. (I suspect that if you did the access in the way that you originally tried with deny ICMP and permit DHCP, that you would find that other traffic that you really want to work would be blocked - so I believe that the suggestion from Jon is the way that you should implement it).
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...