Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

mac address ACL

Status
Not open for further replies.
paublo

paublo

ISP
Sep 14, 2006
127
US
Cisco IOS Software, 7200 Software (C7200-IS-M), Version 12.4(10), RELEASE SOFTWA
RE (fc1)

is it possible to apply a mac address ACL on the router version above.

I can certainly create the ACL but can seem to figure out how to allow it. Everything i tried only works for L3 ACLs.

any ideas

thanks, Paul
 
Sort by date Sort by votes
Can you explain in more detail what you're trying to achieve??

I hate all Uppercase... I don't want my groups to seem angry at me all the time! =)
- ColdFlame (vbscript forum)
 
Upvote 0 Downvote
sounds like you are trying to do port security based on a MAC address?
 
Upvote 0 Downvote
basically i have a bunch of route bridged atm connections. I want to filter based on mac. So certain mac's dont get an ip address when they plug in to their dsl line.
 
Upvote 0 Downvote
apparently with cisco switches you have a lot more mac filter options like port security on cisco routers you are limited to mac ACL's on bridged interfaces only.

thanks for the replies, Paul
 
Upvote 0 Downvote
The user wants mac-address based acl's, not port security...

router#mac access-list extended bla
router(config-ext-nacl)#permit host 0000.861f.3745 host 0006.5bd8.8c2f


/


tim@tim-laptop ~ $ sudo apt-get install windows
Reading package lists... Done
Building dependency tree
Reading state information... Done
E: Couldn't find package windows...Thank Goodness!
 
Upvote 0 Downvote
this will not work on a 7200 only on a switch.
 
Upvote 0 Downvote
Sorry, never tried on a router, and was thinking of a 6509 for some reason...my apologies...

/

tim@tim-laptop ~ $ sudo apt-get install windows
Reading package lists... Done
Building dependency tree
Reading state information... Done
E: Couldn't find package windows...Thank Goodness!
 
Upvote 0 Downvote
Hello
MAC address ACL are work at layer 2 when configures.So the router must be in bridge mode.Below is an excerpt from a production router.

interface FastEthernet0/0
duplex auto
speed auto
bridge-group 1
bridge-group 1 input-pattern-list 1198

access-list 1198 permit 0000.0000.0000 feff.ffff.ffff 0000.0000.0000 feff.ffff.ffff

Regards
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

NavinNet
  • Locked
  • Question
Why 2 different mac addresses of a server are being shown of CISCO 6509E Layer-3 Switch ?
Replies
0
Views
154
NavinNet
NavinNet
Mogles49
  • Locked
  • Question
Firewall ACL question
Replies
1
Views
190
burtsbees
burtsbees
acabezas2014
  • Locked
  • Question
Create ACL for ip range
Replies
2
Views
167
acabezas2014
acabezas2014
brownmab53
  • Locked
  • Question
Cisco PIX 525 is not allowing DHCP address to be applied to router
Replies
1
Views
144
iggsterman
iggsterman
flopeedo
  • Locked
  • Question
Allow outbound 443 to public IP Address
Replies
0
Views
97
flopeedo
flopeedo

Part and Inventory Search

Sponsor

Back
Top