Accepted Solutions
Hi
Looks good, i am wonfering if the device of interest needs to ARP at layer 2 to get a IP address for this this MAC address mentioned have a static IP address ?
i tried it and got the following results ;
My first entry is to deny layer 2 access to my NAS server at 192.168.20.61 - ping failed.
My second entry allows me to manage my SG300-10P switch 192.168.20.200 - ping succeeded
My third unseen entry is probably the implicit deny all.
So my attempt to ping the internet address of 4.2.2.1 failed
My attempt to ping my router gateway at 192.168.20.1 also failed.
I still have to worry about ARPing at layer 2. But the bottom line is my filters worked, I think the pings in the screen capture below show that.
i kept it simple, only applied my MAC ACL filter to the port that my PC was connected to, and not all ports.
Hi
Looks good, i am wonfering if the device of interest needs to ARP at layer 2 to get a IP address for this this MAC address mentioned have a static IP address ?
i tried it and got the following results ;
My first entry is to deny layer 2 access to my NAS server at 192.168.20.61 - ping failed.
My second entry allows me to manage my SG300-10P switch 192.168.20.200 - ping succeeded
My third unseen entry is probably the implicit deny all.
So my attempt to ping the internet address of 4.2.2.1 failed
My attempt to ping my router gateway at 192.168.20.1 also failed.
I still have to worry about ARPing at layer 2. But the bottom line is my filters worked, I think the pings in the screen capture below show that.
i kept it simple, only applied my MAC ACL filter to the port that my PC was connected to, and not all ports.
