11-10-2009 06:09 AM - edited 03-06-2019 08:32 AM
Hi,
I have 2 locations connected throught VPN link through Cisco switches 2960, each location has a lan and has a dhcp server.
can i prevent dhcp broadcst on switch port from passing to vpn link.
Thanks in Advance
11-12-2009 03:45 AM
Ok,
but i make the routers working as a switch, and the two branches are in the same network, So i want to prevent DHCP broadcast through the wan link.
you got it?
11-12-2009 05:42 PM
I think port-based ACL can limit DHCP broadcast packets crossing the wan link.
For example:
deny udp any any eq 67
deny udp any eq 67 any
I'm basing the statements on the wan link does not require any DHCP traffic.
11-14-2009 11:05 PM
All right that i want to implement
but the port-based ACL can be configured on the switch 2960 or 3750
11-15-2009 04:28 AM
This is a example of applying IPv4 ACL on a 2960 layer 2 interface.
http://www.cisco.com/en/US/docs/switches/lan/catalyst2960/software/release/12.2_25_see/configuration/guide/swacl.html#wp1285654
HTH
11-12-2009 06:17 AM
Right
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community
