From: Balaji Siva (bsivasub@gmail.com)
Date: Thu Dec 30 2004 - 14:19:37 GMT-3
Correct, that is the current behavior on cat switches.
http://www.cisco.com/univercd/cc/td/doc/product/lan/c3550/12225se/3550scg/swacl.htm#wp1177303
I believe even ipv6 may be caught in this ACL (on 3550) as anything
non-IPv4 to be precise.
On Thu, 30 Dec 2004 10:35:53 -0000, Roberto Adjakou <radjakou@cfao.sn> wrote:
> In addition, it seems that mac acl is applied for non IP traffic only.
>
> -----Message d'origine-----
> De : Lai, Ben [mailto:benlai_cn@hotmail.com]
> Envoyi : jeudi 30 dicembre 2004 08:40
> @ : ccielab@groupstudy.com
> Objet : What's the difference between "switchport port-security mac" and "mac access-list"
>
> Hi Group:
>
> I'd like to ask that what's difference between the two following
> configuration:
>
> (1)
>
> Int f0/1
>
> Switchport port-security
>
> Switchport port-security mac XXXX.XXXX.XXXX
>
> (2)
>
> switch (config)#mac access-list extended test
>
> switch (config-ext-macl)#permit host XXXX.XXXX.XXXX any
>
> int f0/1
>
> mac access-group test in
>
> Thanks
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Mon Jan 03 2005 - 10:31:32 GMT-3