Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Westi on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

SDM not showing Filter Index 1

Status
Not open for further replies.
BlitzenTrapper

BlitzenTrapper

Programmer
Sep 21, 2010
2
GB
Hi all (first post :))

We have a Cisco Series 1800 router, which has MAC filtering enabled on our radio interface, which is locked down to a set list of clients. Over the years we've been able to add new MAC addresses just fine. Using SDM, we simply select the Filter Index (700) and then add the new MAC address and set the action to Forward. We then add the MAC address as the username and password into our Radius Server. No problem!

Recently however we've noticed that our Filter Index 700 no longer shows in the Dropdown list within SDM. I've used CLI and can confirm that the access-list still exists, which I find perculiar - I do remember reading that the web interface can get confused, but I'm not sure how to correct this?

Is there any way we can get our 700 filter back into the list?

We tried setting up a new Filter Index 701, and adding new MAC addresses to this, but I guess that an interface can only support having one filter applied at a time?

I tried adding one of the new MAC addresses using CLI to access-list 700:

configure terminal
access-list 700 permit newm-acad-dres 0000.0000.0000
ctrl-z

but this didn't seem to allow the new client to connect (wasn't able to establish a connection with the AP), and when I rebooted the router it disappeared from the list. Am I doing something wrong?

Please excuse any mixed terminology - I think I'm confusing some SDM and CLI terms!

Many thanks for any help or guidance.

Matt
 
Sort by date Sort by votes
my experience with ACLS created by SDM suggest a deny any at the end, you might want to check the ACL and actually confirm that the line you are adding is before said deny.
[italic]most of the time you will have to copy / paste / edit the list in notepad / metapad and then copy / paste it back to the router configuration ie:recreate the list [/italic]
...

as for it disappearing, the command copy run start or wr mem will insure that the next time the device reboots you have an up to date configuration -something SDM has been doing for you until now.



We must go always forward, not backward
always up, not down and always twirling twirling towards infinity.
 
Upvote 0 Downvote
Thank you for this.

I've now been able to set up our MAC address list as we want it. It turns out that the SDM cannot handle more than 45 entries (including adding the deny at the end). It was SDM that caused its own problems - in fairness it tried to move some of the new entries into a new access-list (701) but it left a permit entry on the 700 list beneath the deny, which I reckon was the reason it couldn't load its Web interface properly.

I still can't connect our new clients to the router, but I guess that is a separate issue (as they're in the access-list and on the Radius server now).

Thanks for your help.

Matt
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

telemarksman
  • Locked
  • Question
ATA Cisco SPA122 not triggering single line courtesy phone ringer
Replies
0
Views
151
telemarksman
telemarksman
rmartinezv82
  • Locked
  • Question
Issue with port not have comunication Switch 3750X
Replies
1
Views
130
burtsbees
burtsbees
adelainey
  • Locked
  • Question
Voice port notification
Replies
0
Views
103
adelainey
adelainey
siggyb
  • Locked
  • Question
Router on a stick, router pings internet but sitch does not
Replies
1
Views
128
ADB100
ADB100
Rockr41
  • Locked
  • Question
tftp server does not see html file
Replies
0
Views
122
Rockr41
Rockr41

Part and Inventory Search

Sponsor

Back
Top