access-group command doesnt exist - Page 2

mujosmujoma · ‎06-19-2007

Hello,

I just acquired a 2811 running IOS 12.4, but I cannot run the access-group command simply because it doesn't exist. Has anyone experience this before. I can run access-list no problem, but access-group is not existing. Please help me.

Thanks

mujosmujoma · ‎06-20-2007

Right Narayan!

Fa0/0 indeed supports the command access-group!

so this means that my Four (non-default) Ethernet ports cannot be configured with routing commands!!

How can I turn them to L3

Attached is my 'sh diag' result

Thank you for your help!

Mujos

royalblues · ‎06-20-2007

Mujos,

The module HWIC-4ESW you have doesn't seem to support L3 interfaces as per the data sheet

http://www.cisco.com/en/US/products/ps5855/products_data_sheet0900aecd8016bf0b.html

HTH, rate if it does

Narayan

mujosmujoma · ‎06-21-2007

Why would cisco sell L2 only interfaces to plug into a router? A router is supposed to do L3, right? It doesn't make sense to me!

Now I'm stick to 4 L2 ports, and there is no way to software-upgrade it.

Thanks for your light

Mujos

royalblues · ‎06-21-2007

Mujos,

It is actually the other way. These modules are used on the router to give them some switch functionality.

There are few modules which do support L3 functioanlity as well

Narayan

Richard Burts · ‎06-21-2007

Mujos

What if you assign the switch ports to a VLAN (for example VLAN 20) and then try to create an SVI (for example interface vlan 20) and try to put an IP address on it and then try the ip access-group command. I think that should work.

HTH

Rick

HTH

Rick