09-11-2006 07:59 PM - edited 03-05-2019 12:02 PM
Hi
To prevent end-user to use illegal IP address.
We will implement the L3 ACL on the Layer2 SW (WS-C2950G-48-EI) Per-interface
!!!!This solution have any limitation about WS-C2950G-48-EI ? !!!
Sample Config:
interface FastEthernet0/1
ip access-group F1-IP in
interface FastEthernet0/1
ip access-group F2-IP in
......
interface FastEthernet0/48
ip access-group F48-IP in
ip access-list standard F1-IP
permit 192.168.1.1
ip access-list standard F2-IP
permit 192.168.1.2
.....
ip access-list standard F48-IP
permit 192.168.1.48
Solved! Go to Solution.
09-11-2006 10:48 PM
Hi Jalen,
Yes 2950 support IP ACL and it should work.
Also check this link which has "Guidelines for Applying ACLs to Physical Interfaces"
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat2950/12120ea2/2950scg/swacl.htm#wp1082773
Also in your config I see interface fa0/1 with 2 ACLs (F1-IP & F2-IP) in same direction. Is it just a typo error which you have done while pasting your config here or its the real config?
Regards,
Ankur
09-11-2006 10:48 PM
Hi Jalen,
Yes 2950 support IP ACL and it should work.
Also check this link which has "Guidelines for Applying ACLs to Physical Interfaces"
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat2950/12120ea2/2950scg/swacl.htm#wp1082773
Also in your config I see interface fa0/1 with 2 ACLs (F1-IP & F2-IP) in same direction. Is it just a typo error which you have done while pasting your config here or its the real config?
Regards,
Ankur
09-13-2006 01:32 AM
Dear Ankur
Thank you answer .
That is type error,i will config 1 ACE per 1 ACL per port
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide