03-26-2013 10:42 AM - edited 03-07-2019 12:29 PM
Does anybody know where I can find any examples/documentation of a MAC address based ACL to restrict telnet access to a router based on MAC addresses specified? I tried using the 700 range MAC access-list but it won't allow me to apply it the vty lines.
03-26-2013 02:30 PM
Hello,
Unfortunately a MAC ACL can only be applied to a Layer 2 interface and it will only be able to filter Non-IP traffic.
Regards.
03-26-2013 02:47 PM
Hello
Try control plane policing
Access-list 700 permit xxxx.xxxxx.xxxxx
Class-map match-all testcm
Match telnet
Match IP address 700
Policy-map testpm
Class testcm
Drop
Control-plane
Service-policy input testpm
Res
Paul
Sent from Cisco Technical Support iPad App
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide