From: Mingzhou Nie (mnie@xxxxxxxxx)
Date: Mon Jun 17 2002 - 14:34:40 GMT-3
Well, part of arp is to broadcast. If the requirement is to stop
getting broadcast, then arp will break. There is not way you can
workaround.
The solution I see is but the ethernet at it's own vlan. One vlan is a
broadcast domain. If it needs arp and dhcp those broadcast dependant
protocols to work, use "ip helper-address" on other vlans to relay
broadcast.
Ming
--- blewis@btconnect.com wrote:
> I should have said that I need to use a mac address
> access list. The main problem I have is that if I deny
> ffffffffffff I cannot get an arp request through to the
> router on the other side of the bridge. Any more ideas
> anyone?
>
> Brett
>
> ---- original message ----
>
> >Assuming the network is 192.168.10.0 255.255.255.0:
> >
> >interface ethernet 0
> > ip unnumbered serial 0
> > ip access-group 101 in
> > bridge-group 12
> > no route-cache
> >
> >access-list 101 deny ip any host 192.168.10.255
> >access-list 101 permit ip any any
> >
> >bridge 12 protocol ieee
> >
> >
> >
> >
> >HTH, Kym
> >
> >>From: blewis@btconnect.com
> >>Reply-To: blewis@btconnect.com
> >>To: CCIE GROUPSTUDY <ccielab@groupstudy.com>
> >>Subject: Mac Address Filtering
> >>Date: Mon, 17 Jun 2002 14:09:27 00100
> >>
> >>Guys,
> >>
> >>Does anybody know how to stop broadcasts in-bound
> on
> >>an ethernet interface of a router configured as a
> bridge,
> >>I need to allow all other traffic. Any suggestion would
> be
> >>very helpfull.
> >>
> >>Brett
This archive was generated by hypermail 2.1.4 : Tue Jul 02 2002 - 08:12:35 GMT-3