VLAN MAC address filter does not seem to be working on my 4900 switch. However the same config works fine when tested on my 3750 & 3560 switches.
Since user from different VLANs requires to be blocked, Unicast MAC address filter will not be feasible solution.
VACL did not work on my 4506 switch too. Kindly advice
Below is the config done on 4900 switch
mac access-list extended ABC
permit host 0003.0de9.d5ea any
vlan access-map drop-mac 10
match mac address ABC
vlan access-map drop-mac 20
vlan filter drop-mac vlan-list 500
"Since user from different VLANs requires to be blocked.."
VACLs are used to block traffic within the same vlan. If you're trying to block between svis, you'll need an acl to block them and no a vacl...
you need to check your IOS features. Not all of them support VACL or Layer 2 filtering.
here you can find some fetaure you need. (CTRL+F and type mac filter)