Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
549
Views
0
Helpful
1
Replies

mac filtering

sansari
Level 1
Level 1

‎09-30-2011 10:55 AM - edited ‎03-07-2019 02:33 AM

Greetings

I am trying to do mac filtering on 3750, and here is the config I have...

!

mac access-list extended ARP_Packet

permit host mac1 any 0x806 0x0

permit host mac2 any 0x806 0x0

permit host mac3 any 0x806 0x0

permit any mac1 0x806 0x0

permit any mac2 0x806 0x0

permit any mac3 0x806 0x0

spanning-tree mode pvst

spanning-tree extend system-id

!

!

vlan access-map block_arp 10

match mac address ARP_Packet

action forward

vlan access-map block_arp 20

action drop

!

When I apply the command vlan filter block_arp vlan-list all, I lose connectivity to the hosts that are supposed to have connectivity and I have put in my access-list. My goal is to only allow the hosts that I previously know the MAC address for. What seems to be the problem with my config?

Labels:
0 Helpful
1 Reply 1

dominic.caron
Level 5
Level 5

‎10-03-2011 06:02 AM

You are only forwarding ARP packet in your ACL.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card