From: gary.quinn@xxxxxxxxxxxxx
Date: Tue Aug 06 2002 - 18:08:07 GMT-3
no good. I assume you're trying to filter out DHCP packets from crossing the
bridge. The only 3 methods of filtering on a router acting as a bridge is
by filtering on MAC, Vendor Code, or by Type. By Type you can only filter
by Layer3 protocol type. you can filter all IP packets or only allow IPX
(these are just examples... there are gobs of combinations with protocol
types). the router isn't going to look at Layers 3 and above to filter when
you're bridging.
About the only option you have to make this work is to have a 6500 with a
PFC card and use it to define VACLs. That could filter on UDP/TCP port
before it even gets to the router to bridge.
of course, I may be off my rocker.
Gary Quinn
Network Gimp #15326
-----Original Message-----
From: Wright, Jeremy
To: 'ccielab@groupstudy.com'
Cc: 'security@groupstudy.com'
Sent: 8/6/2002 4:09 PM
Subject: OT: Bridging On 3640
I have a 3640 with fa1/0 and fa1/1. i want to bridge everything through
except packets destin for port 67 and 68. im running into trouble with
making the right bridging commands as well as the acl. tia team!
************************
Jeremy Wright
Network Analyst
Archer Daniels Midland
ja_wright@admworld.com
(217)451-4063
************************
This archive was generated by hypermail 2.1.4 : Sat Sep 07 2002 - 19:48:18 GMT-3