09-08-2004 10:35 AM - edited 03-02-2019 06:19 PM
I have a 4006 switch with a WS-X4232-L3 router module.
I want to set up a guest VLAN for wireless users. I only want them to have access to our dhcp server, dns server and inside firewall interface.
I tried using acl on port channel but is said it is not supported. How would i accomplish this?
Thanks,
philip
09-08-2004 12:06 PM
If you want to use ACLs on your WS-X4232-L3 module, you will need to use gigabit sub-interfaces rather than port channel interfaces
09-08-2004 01:21 PM
What is the diff between using port channel interfaces and gigabit sub-interfaces? Would I have to change my config from port channel to gigabit sub-interfaces?
09-08-2004 01:28 PM
Correct. RSM in a CAT4k can be configured in one of the 2 ways
1)Configuring the two backplane ports on the Sup and RSM into an etherchannel and then configure sub-interfaces to do inter VLAN routing
2)To keep the two backplane ports separate and trunk over them using gigabitethernet sub-interfaces
If you need ACLs you will need to use option 2
09-09-2004 10:26 AM
Thanks for the help.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide