Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3430
Views
0
Helpful
1
Replies

PXE boot on 802.1x enabled networks on cisco 3850 denali

Go to solution
Jeffrey Jones
Level 5
Level 5

‎10-10-2018 01:10 PM

Trying to get a brand new machine that is in the field to PIX boot server, need an acl that can work for multiple sites as each site has its own server via the dhcp helper pointed to DHCP server, and each scope has its own.

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Aravind Ravichandran
Level 3
Level 3

‎10-10-2018 08:45 PM

Hi,

You can try to create a ACL only with PXE boot related ports.Something similar like this.

 

ip access-list extended ACL-Default

permit udp any eq bootpc any eq bootps
permit udp any any eq 4011 (PXE)
permit udp any any eq 67 (DHCP)
permit udp any any eq 69 (TFTP)
deny ip any any

-Aravind

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Aravind Ravichandran
Level 3
Level 3

‎10-10-2018 08:45 PM

Hi,

You can try to create a ACL only with PXE boot related ports.Something similar like this.

 

ip access-list extended ACL-Default

permit udp any eq bootpc any eq bootps
permit udp any any eq 4011 (PXE)
permit udp any any eq 67 (DHCP)
permit udp any any eq 69 (TFTP)
deny ip any any

-Aravind
0 Helpful
Customers Also Viewed These Support Documents