access-list on with mac address on cisco 877

[faithful4u]

how can i use access-list with mac address.
i have LAN for one building. when ever i block ip address because of high traffic he simply changing the ip address then using again. so i want to block his mac address with access-list

i did this but still not working

access-list 701 deny <mac address> 0000.0000.0000
access-list 701 permit <mac address> ffff.ffff.ffff

then i applied on interface
bridge-group 1 input-address-list 701
but still not working

please help me

 

[Rouky]

Can you try to give more information about interface's configuration please.

 

[faithful4u]

hostname Nas_N_10MB
!
boot-start-marker
boot-end-marker
!
no logging buffered
no logging console
enable secret
!
no aaa new-model
clock timezone Kuwait 3
!
!
dot11 syslog
ip cef
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.1.1
ip dhcp excluded-address 192.168.1.99
ip dhcp excluded-address 192.168.1.102
ip dhcp excluded-address 192.168.1.245
ip dhcp excluded-address 192.168.1.100
ip dhcp excluded-address 192.168.1.2
ip dhcp excluded-address 192.168.1.3
!
ip dhcp pool CLIENT
import all
network 192.168.1.0 255.255.255.0
dns-server 62.215.6.51 62.215.6.52 8.8.8.8
default-router 192.168.1.101
domain-name wr
lease 30
!
ip dhcp pool client
default-router 192.168.1.101
domain-name reload
!
!
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
ip name-server 62.215.6.51
!
!
!
username Router password 7
!
!
archive
log config
hidekeys
!
!
!
!
!
interface ATM0
no ip address
no ip mroute-cache
atm vc-per-vp 128
no atm ilmi-keepalive
pvc 0/35
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
pvc 1/100
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
pvc 8/35
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
dsl operating-mode auto
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface Vlan1
ip address 192.168.1.101 255.255.255.0
ip access-group aaa in
ip access-group aaa out
ip nat inside
ip virtual-reassembly
no ip mroute-cache
hold-queue 100 out
!
interface Dialer1
ip address negotiated
ip nat outside
ip virtual-reassembly
encapsulation ppp
ip tcp adjust-mss 1452
dialer pool 1
dialer-group 1
ppp authentication chap pap callin
ppp chap hostname
ppp chap password 7
ppp pap sent-username
ppp ipcp dns request
ppp ipcp wins request
hold-queue 224 in
!
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 Dialer1
!
ip http server
ip http access-class 23
ip http authentication local
no ip http secure-server
ip http max-connections 4
ip http timeout-policy idle 600 life 86400 requests 10000
ip nat inside source list 102 interface Dialer1 overload
!
ip access-list extended aaa
deny tcp any any eq 445
deny tcp any any range 135 139
deny udp any any range 135 netbios-ss
deny udp any any eq 445
deny ip host 192.168.1.177 any
permit ip any any
ip access-list extended lan-in
permit ip 192.168.1.0 0.0.0.255 192.168.1.0 0.0.0.255
permit ip host 192.168.1.2 any
permit ip host 192.168.1.3 any
!
access-list 23 permit 192.168.1.0 0.0.0.255
access-list 101 deny ip 0.0.0.101 255.255.255.0 any
access-list 102 permit ip 192.168.1.0 0.0.0.255 any
access-list 701 deny 004f.6226.0b51 0000.0000.0000
access-list 701 permit 0000.0000.0000 ffff.ffff.ffff
dialer-list 1 protocol ip permit
snmp-server community contact RW
snmp-server community home RO
snmp-server enable traps snmp authentication linkdown linkup coldstart warmstar
snmp-server enable traps tty
!
!
!
control-plane
!
!
line con 0
exec-timeout 120 0
login local
no modem enable
stopbits 1
line aux 0
line vty 0 4
exec-timeout 120 0
login local
length 0
!
scheduler max-task-time 5000
!
webvpn context Default_context
ssl authenticate verify all
!
no inservice
!
end