Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3058
Views
0
Helpful
2
Replies

Can mac ACL filter tcp traffic or ...?

jiangcaixia
Level 1
Level 1

‎07-15-2010 01:31 AM

Hi guys,

I have a question about mac ACL. It says that "MAC ACLs—The device applies MAC ACLs only to non-IP traffic.". So, what does non-IP traffic mean? Does mac acl can deny tcp traffic? I began netperf at first and then set the acl(deny such tcp source mac) on the interface for the vm which runs netserver, I found that netperf can't stop for the specified time interval. I saw from the wireshark in the vm that tcp traffic doesn't disappear promptly, but after some time, it disappeared and netperf didn't stop.

And I saw from the command guide that the protocol field for the mac acl can be ip—Internet Protocol v4 (0x0800) in Page 299.

So, Can someone explain what is mac acl used for?

Thanks in advance!

Caixia

Labels:
0 Helpful
2 Replies 2

jiangcaixia
Level 1
Level 1

‎07-15-2010 09:29 PM

Any ideas? Has anyone used it?

Thanks,

Caixia

0 Helpful

ashwinds
Level 1
Level 1

‎08-01-2010 01:56 PM

Yes. MAC ACL can be used to filter only packets where the layer 3 protocol is not IP (for example ARP). Hence it can't be used to filter tcp traffic. Instead we can use an IP ACL for this purpose.

Thanks

Ashwin

0 Helpful
Customers Also Viewed These Support Documents