Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
557
Views
0
Helpful
2
Replies

Inbound ACL break IP helper

karl.jones
Level 1
Level 1

‎05-29-2003 02:21 AM - edited ‎03-02-2019 07:43 AM

HI

I have the config - see below

I am using ip helper to relay dhcp req's from a server to clients on another LAN. On the LAN with the clients, I need to apply an inbound ACL to limit their access to the wide area network. When I apply the ACL below, it breaks everything, and the dhcp feature stops working. I have tried this on a router, L3 switches and got the same result every time.

Has anyone had this problem b4 -

Regards

interface FastEthernet0/1.2

encapsulation dot1Q 2

ip address 172.22.20.2 255.255.255.0

ip helper-address 3.0.2.2

ip directed-broadcast

ip access-list extended Macnetwork

permit tcp 172.22.20.0 0.0.0.255 any eq ftp

permit tcp 172.22.20.0 0.0.0.255 any eq www

permit udp any any eq bootps

permit udp any any eq bootpc

deny ip any any log

Labels:
0 Helpful
2 Replies 2

t.baranski
Level 4
Level 4

‎05-29-2003 07:22 PM

Is the traffic being logged by the last deny statement? If so, can you post the logs?

0 Helpful

karl.jones
Level 1
Level 1
In response to t.baranski

‎05-30-2003 12:56 AM

Unfortunately, I cant post the logs because I cant break the production environment, and I havent got the filter enabled cos it broke the dhcp. If anyone has managed to get this working in the past - any thought would be greatly appreciated.

0 Helpful
Customers Also Viewed These Support Documents